http-headers.md

Bookmarks tagged [http-headers]

www.codever.land/bookmarks/t/http-headers

HTTP Strict Transport Security Header Testing Tool

^{https://gf.dev/hsts-test}

Check if your site is defending from cookie hijacking & protocol downgrade attack

• tags: http, security-tools, http-headers

---

What Is HSTS and How Do I Implement It?

^{https://www.globalsign.com/en/blog/what-is-hsts-and-how-do-i-use-it}

HTTP Strict Transport Security (HSTS) is a web server directive that informs user agents and web browsers how to handle its connection through a response header sent at the very beginning and back to ...

• tags: security, http-headers

---

X-Forwarded-For - HTTP | MDN

^{https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Forwarded-For}

The X-Forwarded-For (XFF) header is a de-facto standard header for identifying the originating IP address of a client connecting to a web server through an HTTP proxy or a load balancer. When traffi...

• tags: http, http-headers, x-forwarded-for

---