RedirectMatch 404 /\.git
Header append X-FRAME-OPTIONS "SAMEORIGIN"
Header append X-Content-Type-Options "nosniff"
<IfModule mod_headers.c>
    Header set X-XSS-Protection "1; mode=block"
#    Header always append X-Frame-Options SAMEORIGIN
Header always set Strict-Transport-Security "max-age=604800; includeSubDomains"
    Header set X-Content-Type-Options nosniff
</IfModule>
<If "%{HTTP_USER_AGENT} !~ /(iPhone; CPU iPhone OS 1[0-2]|iPad; CPU OS 1[0-2]|iPod touch; CPU iPhone OS 1[0-2]|Macintosh; Intel Mac OS X.*Version\x2F1[0-2].*Safari|Macintosh;.*Mac OS X 10_14.* AppleWebKit.*Version\x2F1[0-3].*Safari)/i">
    Header edit Set-Cookie ^(.*)$ $1;SameSite=Strict
</If>