BrowserMatch .* no-gzip

KeepAlive On

ServerAdmin c.riedlbauer-ach@deutschepost.de
DocumentRoot  /pkg/home/dpag/application/source
RewriteEngine On
#RewriteLog /var/log/httpd/rewrite_log
#RewriteLogLevel 2
RewriteOptions Inherit

#RewriteCond %{HTTPS} off
#RewriteCond %{HTTP_HOST} ^postofficeshop.de$
#RewriteRule (.*) https://test1.%{HTTP_HOST}%{REQUEST_URI} [L,R=301]

#RewriteCond %{HTTPS} off
#RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]
Header add X-Content-Type-Options "nosniff"
TraceEnable off
#Header add X-Frame-Options "SAMEORIGIN"
ServerSignature Off
Header always add Strict-Transport-Security "max-age=31556926; includeSubDomains"
Header always append X-XSS-Protection '1; mode=block'
Header always append X-DNS-Prefetch-Control off
Header unset X-Powered-By
Header set X-Content-Type-Options nosniff
Header always append X-Frame-Options SAMEORIGIN
Header always set Referrer-Policy "strict-origin-when-cross-origin"