Hi All,
First post, so be gentle. Setup my first OLS server around a month ago, and overall, I'm very impressed with it.
I am currently trying to harden things, and one of those things is XSS protection via the header (X-XSS-Protection: 1; mode=block), which ideally I'd like to do for the whole server, not on a vhost basis.
I have searched high and low for a solution, and have a niggling feeling that it's going to be something obvious that I've overlooked.
Can someone please point me in the right direction or give me some pointers?
Many Thanks,
Danny.
First post, so be gentle. Setup my first OLS server around a month ago, and overall, I'm very impressed with it.
I am currently trying to harden things, and one of those things is XSS protection via the header (X-XSS-Protection: 1; mode=block), which ideally I'd like to do for the whole server, not on a vhost basis.
I have searched high and low for a solution, and have a niggling feeling that it's going to be something obvious that I've overlooked.
Can someone please point me in the right direction or give me some pointers?
Many Thanks,
Danny.