Changes
== Services ==
* [https://en.wikipedia.org/wiki/HTTP_Strict_Transport_Security HSTS] is enabled in /etc/apache2/mods-enabled/headers.load with:
Header always set Strict-Transport-Security "max-age=31536000; includeSubDomains"
</syntaxhighlight>
* A rule forbid the access to every `.git`, so you can safely have git depot in apache directories.
* Reverse Proxy (0.0.0.0:80/443 -> 127.0.0.1:9001) for [[Etherpad]] configured in /etc/apache2/sites-available/1_Etherpad
* CGI for [[Soundlcoud_downloader]] (only accessible from within the hackerspace)
