- This topic has 2 replies, 2 voices, and was last updated 3 years, 11 months ago by
.
-
Posts
-
I’m using this plugin with GeneratePress https://wordpress.org/plugins/http-security/
When scanning with Sucuri Site Check, I get the warning below. I do not get this warning with this plugin on other themes I use; and I’m wondering If there is something in the GeneratePress theme that would cause this?
Warning:
Missing security header for XSS Protection. Affected pages:
https://domain.com/wp-content/themes/generatepress/
https://domain.com/wp-includes/css/Missing security header to prevent Content Type sniffing. Affected pages:
https://domain.com/wp-content/themes/generatepress/
https://domain.com/wp-includes/css/Missing Strict-Transport-Security security header. Affected pages:
https://domain.com/wp-content/themes/generatepress/
https://domain.com/wp-includes/css/Thank you
GeneratePress 2.2.2Update:
I am getting the same warning on other themes I use.
Might be iThemes Security blocking the plugin in these dirs.
Thank you
Lead Developer
I believe Headers usually need to be set on the server side of things, but I’m not 100% sure.
Documentation: http://docs.generatepress.com/
Adding CSS: http://docs.generatepress.com/article/adding-css/
Ongoing Development: https://generatepress.com/ongoing-development
- You must be logged in to reply to this topic.