+# HTTP Strict Transport Security (HSTS) headers on https addresses
+#$SERVER["socket"] == ":443" {
+# # HSTS (mod_setenv is required) (15768000 seconds = 6 months)
+# setenv.add-response-header += ( "Strict-Transport-Security" => "max-age=15768000" )
+#}
+