View Issue Details

IDProjectCategoryView StatusLast Update
0003985Composrcorepublic2019-12-07 18:32
ReporterChris GrahamAssigned ToChris Graham 
Severitytrivial 
Status resolvedResolutionfixed 
Product Version10.0.28 
Fixed in Version10.0.29 
Summary0003985: "X-Content-Type-Options: nosniff" header may be duplicated
DescriptionComposr sets this header, and we also recommend to set it in .htaccess - so it gets duplicated. Which results in a small excess of bandwidth, and an error on webhint.io.

We cannot detect if the webserver will set it, so this change adds a new _config.php option to disable it.

$SITE_INFO['no_nosniff_header'] = '1';

TagsNo tags attached.
Attach Tags
Time estimation (hours)
Sponsorship open

Activities

admin

2019-12-07 18:32

administrator   ~0006207

Fixed in git commit ee69783b0 (https://gitlab.com/composr-foundation/composr/commit/ee69783b0 - link will become active once code pushed to GitLab)

A hotfix (a TAR of files to upload) have been uploaded to this issue. These files are made to the latest intra-version state (i.e. may roll in earlier fixes too if made to the same files) - so only upload files newer than what you have already. Always take backups of files you are replacing or keep a copy of the manual installer for your version, and only apply fixes you need. These hotfixes are not necessarily reliable or well supported. Not sure how to extract TAR files to your Windows computer? Try 7-zip (http://www.7-zip.org/).

hotfix-3985, 2019-12-07 6pm.tar (111,616 bytes)

Issue History

Date Modified Username Field Change