Task #100032
Updated by Torben Hansen about 1 year ago
The TYPO3 backend should use common HTTP security headers by default. The following HTTP security headers can safely be added: * @Strict-Transport-Security@ (if @[BE][lockSSL]@ is set or of the backend is accessed using HTTPS) * @X-Content-Type-Options@ @'X-Content-Type-Options@ * @Referrer-Policy@