Project

General

Profile

Actions

Bug #13042

open

Disallow content type sniffing

Added by Matthias Van Ceulebroeck 3 months ago. Updated about 2 months ago.

Status:
Review
Priority:
Normal
Target version:
Start date:
09/13/2024
Due date:
% Done:

0%

Estimated time:

Description

Per ASVS's recommendation 14.1.1 every response ought to contain the X-Content-Type-Option; nosniff


Related issues 1 (1 open0 closed)

Related to Improvements #13187: Allow custom headers to be configured in the config fileReview11/06/2024

Actions
Actions #1

Updated by Romain Mardulyn 3 months ago

  • Status changed from New to InProgress
Actions #2

Updated by Romain Mardulyn 3 months ago

  • Status changed from InProgress to Review
  • Assignee deleted (Romain Mardulyn)
Actions #3

Updated by Matthias Van Ceulebroeck about 2 months ago

  • Related to Improvements #13187: Allow custom headers to be configured in the config file added
Actions #4

Updated by Matthias Van Ceulebroeck about 2 months ago

  • Assignee set to Matthias Van Ceulebroeck
Actions

Also available in: Atom PDF