Remove doubled X-XSS-Protection Header (#204)

MISP · Jan 13, 2025 · 2b9390e · 2b9390e
1 parent 3019026
commit 2b9390e
Showing 1 changed file with 0 additions and 1 deletion.
diff --git a/core/files/etc/nginx/includes/misp b/core/files/etc/nginx/includes/misp
@@ -11,7 +11,6 @@ add_header X-Download-Options "noopen" always;
 add_header X-Frame-Options "SAMEORIGIN" always;
 add_header X-Permitted-Cross-Domain-Policies "none" always;
 add_header X-Robots-Tag "none" always;
-add_header X-XSS-Protection "1; mode=block" always;
 
 # remove X-Powered-By and nginx version, which is an information leak
 fastcgi_hide_header X-Powered-By;