jboss_eap_7_tuning_cli_script

차이

문서의 선택한 두 판 사이의 차이를 보여줍니다.

차이 보기로 링크

양쪽 이전 판 이전 판
다음 판		 이전 판
jboss_eap_7_tuning_cli_script [2022/01/26 03:16] koovjboss_eap_7_tuning_cli_script [2024/12/19 10:41] (현재) – [Tuning script] koov
줄 32: 줄 32:
 /subsystem=undertow/configuration=filter/response-header=server-header:add(header-name="Server",header-value="JBoss-EAP/7") /subsystem=undertow/configuration=filter/response-header=server-header:add(header-name="Server",header-value="JBoss-EAP/7")
 /subsystem=undertow/configuration=filter/response-header=x-powered-by-header:add(header-name="X-Powered-By",header-value="Undertow/1") /subsystem=undertow/configuration=filter/response-header=x-powered-by-header:add(header-name="X-Powered-By",header-value="Undertow/1")
 +
 +##### For X-Powered-By: JSP/2.3 response header
 +/subsystem=undertow/servlet-container=default/setting=jsp:write-attribute(name=x-powered-by,value=false)
  
 ##### welcome-content 제거 ##### welcome-content 제거
줄 49: 줄 52:
 /subsystem=undertow/server=default-server/http-listener=default:write-attribute(name=max-parameters,value=1000) /subsystem=undertow/server=default-server/http-listener=default:write-attribute(name=max-parameters,value=1000)
  
 +##### JBoss CRS security
 +/subsystem=undertow/configuration=filter/response-header=x-frame-options:add(header-name="X-Frame-Options",header-value="SAMEORIGIN")
 +/subsystem=undertow/configuration=filter/response-header=x-xss-protection:add(header-name="X-XSS-Protection",header-value="1; mode=block")
 +/subsystem=undertow/configuration=filter/response-header=x-content-type-options:add(header-name="X-Content-Type-Options",header-value="nosniff")
 +
 +###/subsystem=undertow/configuration=filter/response-header=content-security-policy:add(header-name="Content-Security-Policy",header-value="default-src https:")
 +/subsystem=undertow/configuration=filter/response-header=content-security-policy:add(header-name="Content-Security-Policy-Report-Only",header-value="policy")
  
 +/subsystem=undertow/configuration=filter/response-header=strict-transport-security:add(header-name="Strict-Transport-Security",header-value="max-age=31536000; includeSubDomains;")
 +/subsystem=undertow/server=default-server/host=default-host/filter-ref=x-frame-options:add()
 +/subsystem=undertow/server=default-server/host=default-host/filter-ref=x-xss-protection:add()
 +/subsystem=undertow/server=default-server/host=default-host/filter-ref=x-content-type-options:add()
 +/subsystem=undertow/server=default-server/host=default-host/filter-ref=content-security-policy:add()
 +/subsystem=undertow/server=default-server/host=default-host/filter-ref=strict-transport-security:add()
  
 </code> </code>
 </WRAP> </WRAP>
  • jboss_eap_7_tuning_cli_script.1643166982.txt.gz
  • 마지막으로 수정됨: 2022/01/26 03:16
  • 저자 koov