ProxySG & Advanced Secure Gateway

 View Only
  • 1.  vulnerability scanner detected HSTS

    Posted 2 days ago
    Hello Team,


    Can anyone help to check on below query,

    vulnerability scanner detected HSTS missing from the HTTPS server (ProxySG). any suggestions please.

    SG-VA- 6.7.5.12.

    Regards,
    Siva.


  • 2.  RE: vulnerability scanner detected HSTS

    Posted 2 days ago
    Hi Siva

    Are you using DLP - Data Loss Prevention?

    https://knowledge.broadcom.com/external/article/202125/hsts-missing-from-https-server.html








  • 3.  RE: vulnerability scanner detected HSTS

    Posted 2 days ago
    Hello Phil Jones,

    Thanks a lot for your response.

    No,,its SG-VA- 6.7.5.12.

    Regards,
    Siva



  • 4.  RE: vulnerability scanner detected HSTS

    Posted 2 days ago
    Hi Siva

    There is a policy for this, but it's applicable to specific URLS and not for all traffic.
    Also if there was an issue the users should see some impact when browsing to webites.

    https://knowledge.broadcom.com/external/article/169783/policy-to-force-clients-to-use-http-stri.html



  • 5.  RE: vulnerability scanner detected HSTS

    Posted 2 days ago
    Hello Phil Jones,

    Thanks a lot for the details.


    Regards,
    Siva