Actions
Feature #7805
closed
Add several security related HTTP headers - security hardening.
Description
Several HTTP headers that enhance security on client-side:
Content Security Policy
HTTP Strict Transport Security
X-XSS-Protection
X-Frame-Options
X-Content-Type-Options All of these enable browser protections on client side and make exploitation of common web flaws harder.Adding these should be considered security hardening.
Updated by
Updated by Daniel Lobato Garcia over 10 years ago
- Pull request https://github.com/theforeman/foreman/pull/1779 added
- Pull request deleted (
)
Updated by Dominic Cleal over 10 years ago
- Status changed from New to Ready For Testing
- Assignee set to Jan Rusnacko
- Target version set to 1.7.2
Updated by Anonymous over 10 years ago
- Status changed from Ready For Testing to Closed
- % Done changed from 0 to 100
Updated by
Updated by Daniel Lobato Garcia over 10 years ago
- Translation missing: en.field_release set to 21
Updated by Dominic Cleal over 10 years ago
- Related to Bug #7985: Can not access server console added
Updated by Dominic Cleal over 10 years ago
- Related to Bug #7018: SPICE libvirt websockets connections aren't encrypted added
Actions