[
https://issues.apache.org/jira/browse/AMBARI-17311?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15928332#comment-15928332
]
Robert Levas commented on AMBARI-17311:
---------------------------------------
[~sangeetar]... I cherry-picked this into branch-2.5 so it will make it into
Ambari 2.5. The fix, as you indicated, is good for Ambari's security.
Committed to branch-2.5:
{noformat}
commit 5148141a5232d89bb7b661bb9647a5166b562c66
Author: Sangeeta Ravindran <[email protected]>
Date: Mon Oct 10 11:05:40 2016 -0400
{noformat}
CC: [~amagyar]
> Modify HTTP headers to follow best security practices
> -----------------------------------------------------
>
> Key: AMBARI-17311
> URL: https://issues.apache.org/jira/browse/AMBARI-17311
> Project: Ambari
> Issue Type: Improvement
> Components: ambari-server
> Affects Versions: trunk
> Reporter: Sangeeta Ravindran
> Assignee: Sangeeta Ravindran
> Fix For: trunk, 2.5.0
>
> Attachments: AMBARI-17311.patch, AMBARI-17311.patch
>
>
> Add the following HTTP headers to follow security best practices.
> X-Content-Type-Options: nosniff
> Cache-control: no-store
> Pragma: no-cache
--
This message was sent by Atlassian JIRA
(v6.3.15#6346)
