View Issue Details
|ID||Project||Category||View Status||Date Submitted||Last Update|
|0003985||Composr||core||public||2019-12-07 18:32||2019-12-07 18:32|
|Reporter||Chris Graham||Assigned To||Chris Graham|
|Fixed in Version|
|Summary||0003985: "X-Content-Type-Options: nosniff" header may be duplicated|
|Description||Composr sets this header, and we also recommend to set it in .htaccess - so it gets duplicated. Which results in a small excess of bandwidth, and an error on webhint.io.|
We cannot detect if the webserver will set it, so this change adds a new _config.php option to disable it.
$SITE_INFO['no_nosniff_header'] = '1';
|Tags||No tags attached.|
|Time estimation (hours)|
Fixed in git commit ee69783b0 (https://gitlab.com/composr-foundation/composr/commit/ee69783b0 - link will become active once code pushed to GitLab)
A hotfix (a TAR of files to upload) have been uploaded to this issue. These files are made to the latest intra-version state (i.e. may roll in earlier fixes too if made to the same files) - so only upload files newer than what you have already. Always take backups of files you are replacing or keep a copy of the manual installer for your version, and only apply fixes you need. These hotfixes are not necessarily reliable or well supported. Not sure how to extract TAR files to your Windows computer? Try 7-zip (http://www.7-zip.org/).
hotfix-3985, 2019-12-07 6pm.tar (111,616 bytes)