Header always set X...

K

kyzoe

New Member
#1
#1
Hi,

I want to implement global HTTP headers on DirectAdmin + Litespeed + lsphp

Code:
* Header always set Content-Security-Policy "default-src https: data: 'unsafe-inline' 'unsafe-eval'"
* Header always set X-Frame-Options "SAMEORIGIN"
* Header always set X-Xss-Protection "1; mode=block"
* Header always set X-Content-Type-Options "nosniff"

I looked in the web admin and searched on google but can't get it to work.

Kind regards.
Kyzoe
 
P

Pong

Administrator
Staff member
#2
#2
Where did you set the above? You may need to check with DirectAdmin to see the right location to set it globally. Does it work when running apache?
 
K

kyzoe

New Member
#3
#3
Thanks for you reply,

Just minutes before your answer i found what the problem was.
Include httpd conf option was turned off in litespeedadmin :(

it's working fine now!

thank you!
 
You must log in or register to reply here.
Top