Project

General

Profile

Actions
Copy link

Bug #13042

closed

Disallow content type sniffing

Added by Matthias Van Ceulebroeck 4 months ago. Updated 7 days ago.

Status:
Rejected
Priority:
Normal
Assignee:
-
Target version:
4.11.2
Start date:
09/13/2024
Due date:
% Done:

0%

Estimated time:

Description

Per ASVS's recommendation 14.1.1 every response ought to contain the X-Content-Type-Option; nosniff

Related issues 1 (0 open1 closed)

Related to Improvements #13187: Allow custom headers to be configured in the config fileClosedRomain Mardulyn11/06/2024

Actions
Actions
Copy link
 #1

Updated by Romain Mardulyn 4 months ago

  • Status changed from New to InProgress
Actions
Copy link
 #2

Updated by Romain Mardulyn 4 months ago

  • Status changed from InProgress to Review
  • Assignee deleted (Romain Mardulyn)
Actions
Copy link
 #3

Updated by Matthias Van Ceulebroeck 3 months ago

  • Related to Improvements #13187: Allow custom headers to be configured in the config file added
Actions
Copy link
 #4

Updated by Matthias Van Ceulebroeck 3 months ago

  • Assignee set to Matthias Van Ceulebroeck
Actions
Copy link
 #5

Updated by Matthias Van Ceulebroeck 7 days ago

  • Status changed from Review to InProgress
  • Assignee deleted (Matthias Van Ceulebroeck)

Made to be part of #13187. Marking this "Rejected" as a consequence.

Actions
Copy link
 #6

Updated by Matthias Van Ceulebroeck 7 days ago

  • Status changed from InProgress to Rejected
Actions
Copy link

Also available in: Atom PDF