Non-compliant Strict Transport Security (STS)
The remote web server implements Strict Transport Security incorrectly.
The remote web server implements Strict Transport Security. However, it does not respect all the requirements of the STS draft standard.
Links and related¶
Updated by Rajmund Hruska over 1 year ago
- Status changed from New to Feedback
- Assignee set to Rajmund Hruska
- % Done changed from 0 to 100
- To be discussed changed from No to Yes
I read the linked article and it seems to me that the only issue is the Session cookie not marked Secure, which is solved in #7573.