What is HSTS header, how to enable or disable its support in the RedHat Satellite 6 Server, and why certain ports do not offer HSTS?

Solution Verified - Updated -

Issue

1) What is HSTS (HTTP Strict-Transport-Security) header?
2) How to check the status of HSTS header support in the Satellite?
3) How to disable HSTS header support in the Satellite 6?
4) How to disable HSTS header check of the Satellite Server domain name in the Chrome Web browser?
5) How to disable HSTS header check of the Satellite Server domain name in the Mozilla Firefox Web browser?
6) My security scanner is showing that certain ports on a Satellite Server or Capsule Server do not offer HSTS and this is a vulnerability.

Environment

  • Red Hat Satellite 6

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content