Detections
Analytics

Strict Transport Security (STS) Detection

info Nessus Plugin ID 42822

Language:

Synopsis

The remote web server implements Strict Transport Security.

Description

The remote web server implements Strict Transport Security (STS).
The goal of STS is to make sure that a user does not accidentally downgrade the security of his or her browser.

All unencrypted HTTP connections are redirected to HTTPS. The browser is expected to treat all cookies as 'secure' and to close the connection in the event of potentially insecure situations.

See Also

http://www.nessus.org/u?2fb3aca6

Plugin Details

Severity: Info

ID: 42822

File Name: sts_detect.nasl

Version: 1.7

Type: remote

Published: 11/16/2009

Updated: 11/22/2019

Asset Inventory: true

Supported Sensors: Nessus