cPanel Header Security concerns

lautrivta

Member
Oct 25, 2015
8
0
1
Vienna, AT
cPanel Access Level
Reseller Owner
Hello,

why the following headers are not set

Strict-Transport-Security
Content-Security-Policy
X-XSS-Protection
Referrer-Policy

and why the following HTTP Methods are not disabled

DELETE HEAD OPTIONS PUT CUSTOM TRACK TRACE


I tested also with https://demo.cpanel.net:2083/

Thank you for your attention to our security concerns.

rgs

lautrivta
 

cPanelMichael

Technical Support Community Manager
Staff member
Apr 11, 2011
47,911
2,233
363
cPanel Access Level
DataCenter Provider
Twitter