Landing page security

Question

dkistner opened this issue 5 years ago · comments

The server should expose a HSTS header for landing page to enforce secure connections.

On top we should add some Content-Security-Policies to the markup/html of the exposed landing page.

Thormaehlen · Answer 1 · Tue Jun 11 2019 21:37:32 GMT+0800 (China Standard Time)

Do you already have an idea when to start progress? On 18.06.2019 is our next release decision.

Thormaehlen · Answer 2 · Thu Aug 22 2019 15:38:41 GMT+0800 (China Standard Time)

@dkistner next release decision is on 20180828. Do you have an idea how to proceed here?