From 8eecfa9216d1f4d0239d7a3e6e8a7dcc21ad6ced Mon Sep 17 00:00:00 2001
From: Matthias Kretschmann <m@kretschmann.io>
Date: Thu, 11 Jun 2015 00:32:01 +0200
Subject: [PATCH] htaccess updates

---
 _src/.htaccess | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/_src/.htaccess b/_src/.htaccess
index ebab01be..8c43b8d6 100644
--- a/_src/.htaccess
+++ b/_src/.htaccess
@@ -126,7 +126,7 @@ Options -MultiViews
 
 <IfModule mod_headers.c>
 
-    Header set X-UA-Compatible "IE=edge"
+    #Header set X-UA-Compatible "IE=edge"
 
     # `mod_headers` cannot match based on the content-type, however,
     # the `X-UA-Compatible` response header should be send only for
@@ -583,9 +583,9 @@ AddDefaultCharset utf-8
 # https://tools.ietf.org/html/draft-ietf-websec-strict-transport-sec-14#section-6.1
 # http://blogs.msdn.com/b/ieinternals/archive/2014/08/18/hsts-strict-transport-security-attacks-mitigations-deployment-https.aspx
 
-# <IfModule mod_headers.c>
-#     Header always set Strict-Transport-Security "max-age=16070400; includeSubDomains"
-# </IfModule>
+<IfModule mod_headers.c>
+    Header always set Strict-Transport-Security "max-age=16070400;"
+</IfModule>
 
 # ----------------------------------------------------------------------
 # | Reducing MIME type security risks                                  |