ServerTokens Prod
ServerSignature Off
RedirectMatch 404 /\.git
RedirectMatch 404 /\.svn
Header set X-Content-Type-Options: "nosniff"
Header set Content-Security-Policy "frame-ancestors 'self';"