Unnecessary HSTS header

Goody

Goody

New Member
#1
#1
Hi, my domain is eligible for preloading, although we recommend fixing the following warnings.

Warning: Unnecessary HSTS header over HTTPThe HTTP page at my domain sends an HSTS header. This has no effect over HTTP, and should be removed.

My current setup is OpenLiteSpeed 1.6.16

Header Operations:
Strict-Transport-Security "max-age=31536000; includeSubDomains; preload" env=HTTPS

Anything else I should be doing? thanks!
 
KRV

KRV

New Member
#2
#2
Goody said:
Hi, my domain is eligible for preloading, although we recommend fixing the following warnings.

Warning: Unnecessary HSTS header over HTTPThe HTTP page at my domain sends an HSTS header. This has no effect over HTTP, and should be removed.

My current setup is OpenLiteSpeed 1.6.16

Header Operations:
Strict-Transport-Security "max-age=31536000; includeSubDomains; preload" env=HTTPS

Anything else I should be doing? thanks!
Click to expand...
You fix it?
 
You must log in or register to reply here.
Top