pages:howtos:diagnose:check-hsts-header
Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revision | |||
pages:howtos:diagnose:check-hsts-header [2023/01/07 13:01] – removed - external edit (Unknown date) A User Not Logged in | pages:howtos:diagnose:check-hsts-header [2023/01/07 13:01] (current) – ↷ Page moved from pages:howtos:misc:check-hsts-header to pages:howtos:diagnose:check-hsts-header rokkitlawnchair | ||
---|---|---|---|
Line 1: | Line 1: | ||
+ | {{tag> | ||
+ | ====== Check HSTS Header ====== | ||
+ | * [[https:// | ||
+ | How to check the HSTS header of a Host. | ||
+ | |||
+ | ===== Host without HSTS ===== | ||
+ | <sxh bash; gutter: false> | ||
+ | curl --head -s https:// | ||
+ | </ | ||
+ | |||
+ | HTTP/2 200 | ||
+ | accept-ranges: | ||
+ | age: 319222 | ||
+ | cache-control: | ||
+ | content-type: | ||
+ | date: Tue, 19 Jan 2021 22:57:03 GMT | ||
+ | etag: " | ||
+ | expires: Tue, 26 Jan 2021 22:57:03 GMT | ||
+ | last-modified: | ||
+ | server: ECS (nyb/1D1E) | ||
+ | x-cache: HIT | ||
+ | content-length: | ||
+ | |||
+ | |||
+ | ===== Host with HSTS ===== | ||
+ | <sxh bash; gutter: false> | ||
+ | curl --head -s https:// | ||
+ | </ | ||
+ | HTTP/1.1 200 OK | ||
+ | Date: Tue, 19 Jan 2021 22:56:20 GMT | ||
+ | Server: Apache | ||
+ | Content-Language: | ||
+ | Expires: Wed, 20 Jan 2021 15:32:32 GMT | ||
+ | Cache-Control: | ||
+ | Pragma: public | ||
+ | Strict-Transport-Security: | ||
+ | Vary: Host, | ||
+ | Content-Security-Policy: | ||
+ | X-XSS-Protection: | ||
+ | Referrer-Policy: | ||
+ | X-UA-Compatible: | ||
+ | X-Content-Type-Options: | ||
+ | X-Frame-Options: | ||
+ | Content-Type: | ||
+ | |||
+ | <sxh bash; gutter: false> | ||
+ | curl --head -s https:// | ||
+ | </ | ||
+ | Strict-Transport-Security: | ||
+ | |||
+ | ---- | ||
+ | ~~DISCUSSION~~ |