When evaluating the headers of our Help page, help.caredove.com, the results come back indicating a missing header for Strict-Transport-Security. I used Probely’s Security Headers page for this test: https://securityheaders.com/
Is this something that I can change in our Help page configuration? If not how can I go about getting the header changed?
The scan shows up 2 additional missing headers, Referrer-Policy & Permissions-Policy, but those are relatively new and do not penalize us as much at this time.
Best answer by RachealView original