Hi Amos, Thanks for the quick reply. On Thu, Jan 26, 2012 at 9:48 PM, Amos Jeffries <squid3@xxxxxxxxxxxxx> wrote: > To drop the whole header its simply: > request_header_access Cookie deny all > reply_header_access Set-Cookie deny all How can I conditionally apply these rules on certain URLs? Is there a Regex part I can attach to your rules above? E.g. Only apply on "*.png" or on "*.css"? E.g. Or apply on URLs ending with "*.png" except when they also contain "/wp-admin/"? Best regards, Kervin