XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

Suggest an Idea...

HSTS, HTTP Strict Transport Security on sophos XG WAF

Please add support for HSTS, HTTP Strict Transport Security on sophos XG WAF

23 votes
Sign in
Check!
(thinking…)
Reset
or sign in with
  • sso
  • facebook
  • google
    Password icon
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Johan shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

    1 comment

    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • sso
    • facebook
    • google
      Password icon
      Signed in as (Sign out)
      Submitting...
      • Robin commented  ·   ·  Flag as inappropriate

        Yes please, manual header additions and/or modifications/overrules on WAF rules is welcome.
        It's absolutely ridiculous that HSTS still isn't implemented by Sophos years after this was introduced/accepted by the general community...

        In UTM i could modify the configs manually for a generic HSTS addition/modification:

        Header unset Strict-Transport-Security
        Header always set Strict-Transport-Security "max-age=31536000;" env=HTTPS

        But with XG manual modifications are a challenge...

      Feedback and Knowledge Base

      icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.