diff --git a/data/conf/nginx/site.conf b/data/conf/nginx/site.conf index 0b086f28..57d9c9bc 100644 --- a/data/conf/nginx/site.conf +++ b/data/conf/nginx/site.conf @@ -24,10 +24,15 @@ server { fastcgi_param PATH_INFO $fastcgi_path_info; } + rewrite ^(/save.+)$ /rspamd$1 last; location /rspamd/ { proxy_pass http://rspamd:11334/; proxy_set_header Host $host; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + add_header Strict-Transport-Security "max-age=31536000; includeSubdomains"; + add_header X-Content-Type-Options nosniff; + add_header X-Frame-Options SAMEORIGIN; + add_header X-XSS-Protection "1; mode=block"; } location ^~ /inc/init.sql { diff --git a/docker-compose.yml b/docker-compose.yml index 8b18b64e..714ef329 100644 --- a/docker-compose.yml +++ b/docker-compose.yml @@ -55,7 +55,6 @@ services: restart: always dns: - 172.22.1.2 - - 127.0.0.11 dns_search: mailcow-network networks: mailcow-network: @@ -155,7 +154,6 @@ services: hostname: ${MAILCOW_HOSTNAME} dns: - 172.22.1.2 - - 127.0.0.11 dns_search: mailcow-network networks: mailcow-network: