first commit

2025-11-16 22:26:59 +01:00
commit af14d373fa
118 changed files with 10255 additions and 0 deletions
--- a/config/security_wp.conf
+++ b/config/security_wp.conf
@@ -0,0 +1,12 @@
+# security headers
+#add_header X-Frame-Options           "SAMEORIGIN" always;
+add_header X-XSS-Protection          "1; mode=block" always;
+add_header X-Content-Type-Options    "nosniff" always;
+add_header Referrer-Policy           "no-referrer-when-downgrade" always;
+#add_header Content-Security-Policy   "default-src 'self' http: https: data: blob: 'unsafe-inline'" always;
+add_header Strict-Transport-Security "max-age=31536000; includeSubDomains" always;
+
+# . files
+location ~ /\.(?!well-known) {
+    deny all;
+}