dhojgaard Asked: 2012-12-06 15:14:24 +0800 CST2012-12-06 15:14:24 +0800 CST 2012-12-06 15:14:24 +0800 CST http strict transport security on apache 772 I could not find one topic on HSTS here on askubuntu.com yet so here it comes: I want to setup HSTS so that my webserver will force the browsers to use HTTPS. Does anyone know how to set this up for apache2 in a proper way? security 2 Answers Voted Best Answer Dennis Kaarsemaker 2012-12-06T15:27:48+08:002012-12-06T15:27:48+08:00 It's really yout application that should be setting this imho, but you can use Header set to make apache do it: Header set Strict-Transport-Security "max-age=31536000" Mayur Bhandare 2018-04-04T21:14:37+08:002018-04-04T21:14:37+08:00 Its Really simple you just need to add one line to your .htaccess file on server Header set Strict-Transport-Security "max-age=31536000" env=HTTPS Thats it
It's really yout application that should be setting this imho, but you can use
Header setto make apache do it:Its Really simple you just need to add one line to your .htaccess file on server
Header set Strict-Transport-Security "max-age=31536000" env=HTTPS
Thats it