Security Sidebar: Improving Your SSL Labs Test Grade

Encrypt everything.  That's what Google Chairman Eric Schmidt recently said.  His comments were in response to various surveillance efforts that he considered government overreach and censorship.  Hi...
Published Dec 23, 2014
Version 1.0
LTM
qualys
security
security sidebar
series-security-sidebar
ssl
Mike_Gorski_625's avatar
Mike_Gorski_625
Icon for Nimbostratus rankNimbostratus
May 20, 2015
Note how HSTS support is evaluated by SSL Labs - they make a GET against "/" URI and check whether the header is there and that it's at least 180 days - but if your VIP doesn't process requests for "/" or you have a redirect via HTTP::respond or HTTP::redirect then even the iRule to insert the header as part of HTTP_RESPONSE event does not fire - you need to modify the HTTP::respond/HTTP::redirect to include that header