No-Encryption-Found/EN/Solution Tips: Unterschied zwischen den Versionen
Zeile 10: | Zeile 10: | ||
Here is an example of an .htaccess file which will set the '''HTTP-Security-Header-Scanner''' to green. | Here is an example of an .htaccess file which will set the '''HTTP-Security-Header-Scanner''' to green. | ||
− | ([[Htaccess|.htaccess | + | ([[Htaccess|.htaccess example (German only]]) |
Version vom 6. Februar 2019, 15:55 Uhr
max-age=63072000; includeSubdomains; HTTP Strict Transport Security (HSTS) is a web security policy mechanism that is easy to integrate.
--snip
# Activate HTTP Strict Transport Security (HSTS) # Required: "max-age" # Optional: "includeSubDomains"
Header set Strict-Transport-Security "max-age=31556926; includeSubDomains"
--snap
Here is an example of an .htaccess file which will set the HTTP-Security-Header-Scanner to green. (.htaccess example (German only)