Security Sidebar: Improving Your SSL Labs Test Grade
Encrypt everything. That's what Google Chairman Eric Schmidt recently said. His comments were in response to various surveillance efforts that he considered government overreach and censorship. Hi...
Note how HSTS support is evaluated by SSL Labs - they make a GET against "/" URI and check whether the header is there and that it's at least 180 days - but if your VIP doesn't process requests for "/" or you have a redirect via HTTP::respond or HTTP::redirect then even the iRule to insert the header as part of HTTP_RESPONSE event does not fire - you need to modify the HTTP::respond/HTTP::redirect to include that header