Question & Answer
Question
We have LA 1.3.7 installed, and the security team discovered the following vulnerability on port 9987:
HSTS Missing From HTTPS Server (RFC 6797)
Plug-in Output:
The remote HTTPS server does not send the HTTP ""Strict-Transport-Security"" header.
How do I clear this?
[{"Type":"MASTER","Line of Business":{"code":"LOB77","label":"Automation Platform"},"Business Unit":{"code":"BU048","label":"IBM Software"},"Product":{"code":"SSPFMY","label":"IBM Operations Analytics - Log Analysis"},"ARM Category":[{"code":"a8m50000000CcMiAAK","label":"Log Analysis-\u003EFramework-\u003ESecurity - Vulnerabilities"}],"ARM Case Number":"TS008001663","Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"All Versions"}]
Log InLog in to view more of this document
This document has the abstract of a technical article that is available to authorized users once you have logged on. Please use Log in button above to access the full document. After log in, if you do not have the right authorization for this document, there will be instructions on what to do next.
Historical Number
TS008001663
Was this topic helpful?
Document Information
Modified date:
12 January 2022
UID
ibm16539848