Support

Hi, for one of my websites the client want the maximum level of security.
https://securityheaders.com/?q=iomtrainer.nl&followRedirects=on

So I want to implement the missing CSP rules. I tested a lot of possibility's via the recommended site https://www.cspisawesome.com/
but all rules gave me the 500 error.

Is there some way to test what options there are that should be set? Some step by step hand-out?

Best regards, Hein

Hello,

what's listed in the site you linked refers to the headers to be used, the actual string that needs to be put inside the .htaccess file are different.
Please take a look at this site: https://content-security-policy.com/

The actual rule you have to create is something like this: Header set Content-Security-Policy "default-src 'self';"
Once you're happy with the result, please remember to set your custom rule inside the fiels Custom rules at the bottom of the .htacces file, so you won't lose them if you regenerate the file using the Htaccess Maker.

This ticket has been automatically closed. All tickets which have been inactive for a long time are automatically closed. If you believe that this ticket was closed in error, please contact us.