includeSubDomains | ww.wp.xz.cn

Resolved Francisco Sanchez Llorente
(@kurros)

1 year, 1 month ago

I have checked the directive includeSubDomains in the HSTS header, but it does not appear to perform an exam with securityheaders.com

The page I need help with: [log in to see the link]

Viewing 3 replies - 1 through 3 (of 3 total)

Plugin Author Andrea Ferro
(@unicorn03)

1 year, 1 month ago
Hi @kurros, i’m Andrea and I will assist you in the topic you opened. As the first thing I would like to thank you for installing the Headers Security Advanced & HSTS WP plugin.

Thank you for your topic “includeSubDomains” I will ask you some information about HSTS settings.

In the following path Settings > Headers Security Advanced & HSTS WP > I ask you if you checked the following items and then saved
- include Subdomains:
  Enable include subdomains
- Preload:
  Enable preload
so I can give you a detailed answer that is right for your case. I will get back to you as soon as possible once I receive a response.
Plugin Author Andrea Ferro
(@unicorn03)

1 year, 1 month ago

I have meanwhile checked: https://securityheaders.com/ and the grade is perfect.

I analyzed the headers and see that the values are taken correctly but it seems that includeSubDomains is not checked.

result check: max-age=63072000; preload

Thread Starter Francisco Sanchez Llorente
(@kurros)

1 year ago

I received an update of the plugin to version 5.0.43 and the problem has been solved. Thank you.

Viewing 3 replies - 1 through 3 (of 3 total)

The topic ‘includeSubDomains’ is closed to new replies.

3 replies
2 participants
Last reply from: Francisco Sanchez Llorente
Last activity: 1 year ago
Status: resolved