question

FangWolf-7115 avatar image
0 Votes"
FangWolf-7115 asked EliOfek-7626 answered

Advanced Threat Analytics Query

Hi all,

In my environment, Tenable Nessus Scanner had flagged out the "HSTS Missing From HTTPS Server (RFC 6797)" vulnerability for Microsoft Advanced Threat Analytics ver 1.9.3

I checked the Windows OS installed with ATA, but there is no IIS installed by ATA and am stuck at how to resolve this flagged vulnerability.
Would like to check if anyone else encountered the same flagged vulnerability and did u manage to resolve it? (How?)
Also tried checking for links which may indicate the flagged vulnerability for ATA as a "false positive" but to no avail.

Thanks!

ems-advanced-threat-analytics
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

EliOfek-7626 avatar image
1 Vote"
EliOfek-7626 answered

Hi,

HSTS header is planned to be added to ATA with 1.9 Update 4 planned for later this year.
There is no way for you to manually add it, as this is a self host web server.

Thanks,

Eli

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.