Security hardening + new tools deployment
- Hide Apache version (ServerTokens Prod) - Add Permissions-Policy header - Remove deprecated X-XSS-Protection - Consolidate security headers to .htaccess only (remove duplicates from PHP) - Deploy free tools: robots-analyzer, data-converter - Deploy tools announcement blog post - Update sitemap with new tools and blog post
This commit is contained in:
root
@@ -1,10 +1,6 @@
|
||||
<?php
|
||||
// Enhanced security headers
|
||||
header('X-Content-Type-Options: nosniff');
|
||||
header('X-Frame-Options: DENY');
|
||||
header('X-XSS-Protection: 1; mode=block');
|
||||
header('Strict-Transport-Security: max-age=31536000; includeSubDomains');
|
||||
header('Referrer-Policy: strict-origin-when-cross-origin');
|
||||
|
||||
// Article-specific SEO variables
|
||||
$article_title = "UK Property Market: Data-Driven Investment Insights";
|
||||
@@ -64,6 +60,7 @@ $read_time = 8;
|
||||
|
||||
<!-- Styles -->
|
||||
<link rel="stylesheet" href="../../assets/css/main.css">
|
||||
<link rel="stylesheet" href="../../assets/css/cro-enhancements.css">
|
||||
|
||||
<!-- Article Schema -->
|
||||
<script type="application/ld+json">
|
||||
@@ -103,7 +100,7 @@ $read_time = 8;
|
||||
<div class="nav-container">
|
||||
<div class="nav-logo">
|
||||
<a href="/">
|
||||
<img src="../../assets/images/ukds-main-logo.png" alt="UK Data Services" class="logo" loading="eager">
|
||||
<img loading="lazy" src="../../assets/images/ukds-main-logo.png" alt="UK Data Services" class="logo" loading="eager">
|
||||
</a>
|
||||
</div>
|
||||
<div class="nav-menu" id="nav-menu">
|
||||
@@ -140,10 +137,10 @@ $read_time = 8;
|
||||
</div>
|
||||
<div class="share-buttons">
|
||||
<a href="https://www.linkedin.com/sharing/share-offsite/?url=<?php echo urlencode($canonical_url); ?>" class="share-button linkedin" aria-label="Share on LinkedIn" rel="noopener" target="_blank">
|
||||
<img src="../../assets/images/icon-linkedin.svg" alt="LinkedIn">
|
||||
<img loading="lazy" src="../../assets/images/icon-linkedin.svg" alt="LinkedIn">
|
||||
</a>
|
||||
<a href="https://twitter.com/intent/tweet?url=<?php echo urlencode($canonical_url); ?>&text=<?php echo urlencode($article_title); ?>" class="share-button twitter" aria-label="Share on Twitter" rel="noopener" target="_blank">
|
||||
<img src="../../assets/images/icon-twitter.svg" alt="Twitter">
|
||||
<img loading="lazy" src="../../assets/images/icon-twitter.svg" alt="Twitter">
|
||||
</a>
|
||||
</div>
|
||||
</div>
|
||||
@@ -420,7 +417,7 @@ $read_time = 8;
|
||||
<div class="footer-content">
|
||||
<div class="footer-section">
|
||||
<div class="footer-logo">
|
||||
<img src="../../assets/images/logo-white.svg" alt="UK Data Services" loading="lazy">
|
||||
<img loading="lazy" src="../../assets/images/logo-white.svg" alt="UK Data Services" loading="lazy">
|
||||
</div>
|
||||
<p>Enterprise data intelligence solutions for modern British business.</p>
|
||||
</div>
|
||||
@@ -451,10 +448,10 @@ $read_time = 8;
|
||||
<p>© <?php echo date('Y'); ?> UK Data Services. All rights reserved.</p>
|
||||
<div class="social-links">
|
||||
<a href="https://linkedin.com/company/uk-data-services" aria-label="LinkedIn" rel="noopener" target="_blank">
|
||||
<img src="../../assets/images/icon-linkedin.svg" alt="LinkedIn" loading="lazy">
|
||||
<img loading="lazy" src="../../assets/images/icon-linkedin.svg" alt="LinkedIn" loading="lazy">
|
||||
</a>
|
||||
<a href="https://twitter.com/ukdataservices" aria-label="Twitter" rel="noopener" target="_blank">
|
||||
<img src="../../assets/images/icon-twitter.svg" alt="Twitter" loading="lazy">
|
||||
<img loading="lazy" src="../../assets/images/icon-twitter.svg" alt="Twitter" loading="lazy">
|
||||
</a>
|
||||
</div>
|
||||
</div>
|
||||
@@ -463,5 +460,6 @@ $read_time = 8;
|
||||
|
||||
<!-- Scripts -->
|
||||
<script src="../../assets/js/main.js"></script>
|
||||
<script src="../../assets/js/cro-enhancements.js"></script>
|
||||
</body>
|
||||
</html>
|
||||
Reference in New Issue
Block a user