Ken Liao created AMQ-9545:
-----------------------------
Summary: Setting Cache-Control policy on web console.
Key: AMQ-9545
URL: https://issues.apache.org/jira/browse/AMQ-9545
Project: ActiveMQ Classic
Issue Type: Improvement
Components: Web Console
Reporter: Ken Liao
Fix For: 6.2.0
Unspecified Cache-Control HTTP header is vulnerable. Set it to no-store to
avoid caching sensitive data for stronger security. It should be the default
unless users override it.
Reference: [https://www.virtuesecurity.com/kb/cache-controls-explained/]
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
For further information, visit: https://activemq.apache.org/contact
