ProxySG & Advanced Secure Gateway

Hello Team,


Can anyone help to check on below query,

vulnerability scanner detected HSTS missing from the HTTPS server (ProxySG). any suggestions please.

SG-VA- 6.7.5.12.

Regards,
Siva.

Hi Siva

Are you using DLP - Data Loss Prevention?

https://knowledge.broadcom.com/external/article/202125/hsts-missing-from-https-server.html






Original Message:
Sent: Jun 23, 2022 04:27 AM
From: siva guthula
Subject: vulnerability scanner detected HSTS

Hello Team,


Can anyone help to check on below query,

vulnerability scanner detected HSTS missing from the HTTPS server (ProxySG). any suggestions please.

SG-VA- 6.7.5.12.

Regards,
Siva.

Hello Phil Jones,

Thanks a lot for your response.

No,,its SG-VA- 6.7.5.12.

Regards,
Siva
Original Message:
Sent: Jun 23, 2022 05:18 AM
From: Phil Jones
Subject: vulnerability scanner detected HSTS

Hi Siva

Are you using DLP - Data Loss Prevention?

https://knowledge.broadcom.com/external/article/202125/hsts-missing-from-https-server.html






Original Message:
Sent: Jun 23, 2022 04:27 AM
From: siva guthula
Subject: vulnerability scanner detected HSTS

Hello Team,


Can anyone help to check on below query,

vulnerability scanner detected HSTS missing from the HTTPS server (ProxySG). any suggestions please.

SG-VA- 6.7.5.12.

Regards,
Siva.

Hi Siva

There is a policy for this, but it's applicable to specific URLS and not for all traffic.
Also if there was an issue the users should see some impact when browsing to webites.

https://knowledge.broadcom.com/external/article/169783/policy-to-force-clients-to-use-http-stri.html

Original Message:
Sent: Jun 23, 2022 05:40 AM
From: siva guthula
Subject: vulnerability scanner detected HSTS

Hello Phil Jones,

Thanks a lot for your response.

No,,its SG-VA- 6.7.5.12.

Regards,
Siva
Original Message:
Sent: Jun 23, 2022 05:18 AM
From: Phil Jones
Subject: vulnerability scanner detected HSTS

Hi Siva

Are you using DLP - Data Loss Prevention?

https://knowledge.broadcom.com/external/article/202125/hsts-missing-from-https-server.html






Original Message:
Sent: Jun 23, 2022 04:27 AM
From: siva guthula
Subject: vulnerability scanner detected HSTS

Hello Team,


Can anyone help to check on below query,

vulnerability scanner detected HSTS missing from the HTTPS server (ProxySG). any suggestions please.

SG-VA- 6.7.5.12.

Regards,
Siva.

Hello Phil Jones,

Thanks a lot for the details.


Regards,
Siva
Original Message:
Sent: Jun 23, 2022 06:51 AM
From: Phil Jones
Subject: vulnerability scanner detected HSTS

Hi Siva

There is a policy for this, but it's applicable to specific URLS and not for all traffic.
Also if there was an issue the users should see some impact when browsing to webites.

https://knowledge.broadcom.com/external/article/169783/policy-to-force-clients-to-use-http-stri.html

Original Message:
Sent: Jun 23, 2022 05:40 AM
From: siva guthula
Subject: vulnerability scanner detected HSTS

Hello Phil Jones,

Thanks a lot for your response.

No,,its SG-VA- 6.7.5.12.

Regards,
Siva
Original Message:
Sent: Jun 23, 2022 05:18 AM
From: Phil Jones
Subject: vulnerability scanner detected HSTS

Hi Siva

Are you using DLP - Data Loss Prevention?

https://knowledge.broadcom.com/external/article/202125/hsts-missing-from-https-server.html






Original Message:
Sent: Jun 23, 2022 04:27 AM
From: siva guthula
Subject: vulnerability scanner detected HSTS

Hello Team,


Can anyone help to check on below query,

vulnerability scanner detected HSTS missing from the HTTPS server (ProxySG). any suggestions please.

SG-VA- 6.7.5.12.

Regards,
Siva.