[ad_1]
Hello,
The following website diagnoses the presence or absence of HTTP security headers, for instance for this very support page:
https://securityheaders.com/?q=https%3A%2F%2Fwordpress.org%2Fsupport%2Fplugin%2Fall-in-one-wp-security-and-firewall%2F&followRedirects=on
I realized that AIOWPS supports the X-Frame-Options header.
What about Strict-Transport-Security, Content-Security-Policy, X-Content-Type-Options, Referrer-Policy and Feature-Policy? Are there somewhere in AIOWPS settings? Could they otherwise be added for increased security, with an explanation of the various implications, the way it is nicely done for other settings?
Thank you very much for a great plugin. 🙂