Merge pull request #82 from linkRace/master

Update README.md
krakenjs · Apr 29, 2016 · d0078fd · d0078fd
2 parents c7291ff + f5ac8a3
commit d0078fd
Showing 1 changed file with 3 additions and 3 deletions.
diff --git a/README.md b/README.md
@@ -44,7 +44,7 @@ app.use(lusca.xframe('SAMEORIGIN'));
 app.use(lusca.p3p('ABCDEF'));
 app.use(lusca.hsts({ maxAge: 31536000 }));
 app.use(lusca.xssProtection(true));
-app.use(lusca.nosniff(true));
+app.use(lusca.nosniff());
 ```
 
 __Please note that you must use [express-session](https://github.com/expressjs/session), [cookie-session](https://github.com/expressjs/cookie-session), their express 3.x alternatives, or other session object management in order to use lusca.__
@@ -127,6 +127,6 @@ Enables [HTTP Strict Transport Security](https://www.owasp.org/index.php/HTTP_St
 Enables [X-XSS-Protection](http://blogs.msdn.com/b/ie/archive/2008/07/02/ie8-security-part-iv-the-xss-filter.aspx) headers to help prevent cross site scripting (XSS) attacks in older IE browsers (IE8)
 
 
-### lusca.nosniff(true)
+### lusca.nosniff()
 
-Enables [X-Content-Type-Options](https://blogs.msdn.microsoft.com/ie/2008/09/02/ie8-security-part-vi-beta-2-update/) header to prevent MIME-sniffing a response away from the declared content-type.  Defaults to false.
+Enables [X-Content-Type-Options](https://blogs.msdn.microsoft.com/ie/2008/09/02/ie8-security-part-vi-beta-2-update/) header to prevent MIME-sniffing a response away from the declared content-type.