Merge remote-tracking branch 'remotes/origin/develop' into 1364-no-pushes-from-blocke...

[akkoma] / lib / pleroma / plugs / http_security_plug.ex

diff --git a/lib/pleroma/plugs/http_security_plug.ex b/lib/pleroma/plugs/http_security_plug.ex
index e4939efe51ccbe7395d0d614591ba8789b53229e..81e6b4f2a36c04bc3b693582384c46090be11bc8 100644 (file)
--- a/lib/pleroma/plugs/http_security_plug.ex
+++ b/lib/pleroma/plugs/http_security_plug.ex
@@ -1,5 +1,5 @@
 # Pleroma: A lightweight social networking server
-# Copyright © 2017-2019 Pleroma Authors <https://pleroma.social/>
+# Copyright © 2017-2020 Pleroma Authors <https://pleroma.social/>
 # SPDX-License-Identifier: AGPL-3.0-only
 
 defmodule Pleroma.Plugs.HTTPSecurityPlug do
@@ -129,7 +129,8 @@ defmodule Pleroma.Plugs.HTTPSecurityPlug do
            izAotX7777777777777777777777777777777777777777Y7n92:
              .;CoIIIIIUAA666666699999ZZZZZZZZZZZZZZZZZZZZ6ov.
 
-HTTP Security is disabled. Add this line to your config to enable it:
+HTTP Security is disabled. Please re-enable it to prevent users from attacking
+your instance and your users via malicious posts:
 
       config :pleroma, :http_security, enabled: true
       ")