The HSTS Errors and Warnings will allow attackers to bypass HSTS. and will allow them to read, modify communication of website.
to fix this error you should consider by adding the domain to the HSTS preload list.
This will ensure that browsers will automatically connect your website by using HTTPS and will prevent users from visiting your website using HTTP.
Set htacess Rule as -
Header set Strict-Transport-Security "max-age=31536000; includeSubDomains; preload" env=HTTPS
No comments:
Post a Comment