Closed
Bug 1340059
Opened 8 years ago
Closed 7 years ago
[observatory] X-Content-Type-Options header not implemented
Categories
(support.mozilla.org - Lithium :: General, defect, P1)
support.mozilla.org - Lithium
General
Tracking
(Not tracked)
RESOLVED
INVALID
2017q1
People
(Reporter: rolandtanglao, Unassigned)
References
Details
(Whiteboard: [1st2weeks])
From: https://observatory.mozilla.org/analyze.html?host=support.mozilla.org
X-Content-Type-Options header not implemented
|
Reporter | |
Comment 1•8 years ago
|
||
Lithium Response: The header is not set, but the Content-Type header is set on every page which makes this a low risk.
|
|
Reporter | |
Comment 2•8 years ago
|
||
Update from http://supportcases.lithium.com/50061000009MCTs
QUOTE
Created By: Kris Stewart (2/24/2017 11:04 AM)
[Recipients: Patrick McClard, Scott Riley, Ryan Ausano, Lisa Hern, rtanglao@mozilla.com]
X-Content-Type-Options - in order to be fully compliant, this too will need to be submitted as an improvement request to support a new feature. I'm working on this now and will drive it alongside support for X-XSS-Protection and SRI.
END QUOTE
Need Info'ing myself to remind me to test this when done
Flags: needinfo?(rtanglao)
|
|
Reporter | |
Updated•8 years ago
|
Component: Lithium Migration → General
Flags: needinfo?(rtanglao)
Product: support.mozilla.org → support.mozilla.org - Lithium
Target Milestone: --- → 2017q1
|
||
Updated•7 years ago
|
Status: NEW → RESOLVED
Closed: 7 years ago
Resolution: --- → INVALID
You need to log in
before you can comment on or make changes to this bug.
Description
•