How to enable HSTS Strict-Transport-Security rule in .htacce
2 posts
• Page 1 of 1
How to enable HSTS Strict-Transport-Security rule in .htacce
Please help me with this urgent issue.
A PCI scan on our web site has failed.
Reason: HSTS Missing From HTTPS Server
Can I add a rule in the .htaccess file like this:
Header always set Strict-Transport-Security "max-age-31536000; includeSubDomains; preload" env=HTTPS
A PCI scan on our web site has failed.
Reason: HSTS Missing From HTTPS Server
Can I add a rule in the .htaccess file like this:
Header always set Strict-Transport-Security "max-age-31536000; includeSubDomains; preload" env=HTTPS
Re: How to enable HSTS Strict-Transport-Security rule in .ht
I can't believe there have been NO replies since 24 Sep 2020
Maybe this Forum is now dead?
Anyway, for anyone interested the rule worked for me:
Header always set Strict-Transport-Security "max-age-31536000; includeSubDomains; preload" env=HTTPS
Maybe this Forum is now dead?
Anyway, for anyone interested the rule worked for me:
Header always set Strict-Transport-Security "max-age-31536000; includeSubDomains; preload" env=HTTPS
2 posts
• Page 1 of 1
Who is online
Users browsing this forum: No registered users and 3 guests