Security http headers inspection results

Questions about hosting a Website, using MySQL, PhP or MariaDB may be posted here.
Forum rules
1) This is a user forum for Synology users to share experience/help out each other: if you need direct assistance from the Synology technical support team, please use the following form:

https://account.synology.com/support/su ... p?lang=enu



2) To avoid putting users' DiskStation at risk, please don't paste links to any patches provided by our Support team as we will systematically remove them. Our Support team will provide the correct patch for your DiskStation model.
User avatar
WST16
Sharp
Sharp
Posts: 177
Joined: Sun Oct 02, 2016 10:03 am

Security http headers inspection results

Unread post by WST16 » Mon May 14, 2018 10:34 pm

Hi all,

I’ve got my simple site on a DS118 using Apache 2.2 web server.

Managed to install Let’s Encrypt Certificate.

Forced https by adding the following to .htaccess (is this the correct way?)
RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI}

When I test with TLS inspector it shows the following. Can I improve anything here?

Image

This is a new territory for me. Appreciate any feed back. Thanks in advance.
DS216+II : DS118 : APC Back UPS ES 700 : Mac user

User avatar
WST16
Sharp
Sharp
Posts: 177
Joined: Sun Oct 02, 2016 10:03 am

Re: Security http headers inspection results

Unread post by WST16 » Thu Jun 14, 2018 12:14 am

Sharing what I’ve found about my unanswered inquiry…

https://www.keycdn.com/blog/http-security-headers/
DS216+II : DS118 : APC Back UPS ES 700 : Mac user

Post Reply

Return to “Web Server + PHP / MySQL + MariaDB”