Cybersecurity Forum

This forum is for all security enthusiasts to discuss Fortinet's latest & evolving technologies and to connect & network with peers in the cybersecurity hemisphere. Share and learn on a broad range of topics like best practices, use cases, integrations and more. For support specific questions/resources, please visit the Support Forum or the Knowledge Base.

tanhm
New Contributor

FG WebUI Login Page Security Headers (X-Content-Type-Options) Missing

Is there a way to add "X-Content-Type-Options: nosniff" in the WebUI Login page header?
1 REPLY 1
bartsikk
New Contributor

can't find a way to do this.

did find this article by Fortinet security team which you might use to show that it is not needed (assuming the original requirement comes from a security review):

https://community.fortinet.com/t5/FortiGate/PSIRT-Note-X-Content-Type-Options-HTTP-Header-missing-on-port/ta-p/193545
Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.