Security http headers inspection results

Questions about hosting a Website, using MySQL, PhP or MariaDB may be posted here.
Forum rules
We've moved! Head over to Synology Community (community.synology.com) to meet up with our team and other Synology enthusiasts!
User avatar
WST16
Versed
Versed
Posts: 261
Joined: Sun Oct 02, 2016 10:03 am

Security http headers inspection results

Unread post by WST16 » Mon May 14, 2018 10:34 pm

Hi all,

I’ve got my simple site on a DS118 using Apache 2.2 web server.

Managed to install Let’s Encrypt Certificate.

Forced https by adding the following to .htaccess (is this the correct way?)
RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI}

When I test with TLS inspector it shows the following. Can I improve anything here?

Image

This is a new territory for me. Appreciate any feed back. Thanks in advance.
DS216+II : DS118 : APC Back UPS ES 700 : Mac user

User avatar
WST16
Versed
Versed
Posts: 261
Joined: Sun Oct 02, 2016 10:03 am

Re: Security http headers inspection results

Unread post by WST16 » Thu Jun 14, 2018 12:14 am

Sharing what I’ve found about my unanswered inquiry…

https://www.keycdn.com/blog/http-security-headers/
DS216+II : DS118 : APC Back UPS ES 700 : Mac user

Locked

Return to “Web Server + PHP / MySQL + MariaDB”