Enable HSTS on cPanel / WHM interface
As a server administrator, I'd like to request a Tweak Setting so that clients can enable HSTS for cpsrvd.
Several clients have reported PCI Compliance failures due to HSTS not being able to be enabled on the cpsrvd ports.
The current Tweak Settings are:
Require SSL for cPanel ServicesThis option forces the server to redirect unencrypted cPanel, Webmail, WHM, and DAV requests to secure ports according to the SSL redirection settings. If “Choose the closest matched domain for which that the system has a valid certificate when redirecting from non-SSL to SSL URLs” is enabled, the system will redirect to the best matched certificate for the domain. If “Choose the closest matched domain for which that the system has a valid certificate when redirecting from non-SSL to SSL URLs” is disabled, the system will redirect to the https:// URL for the domain, even if no valid certificate exists for the domain.
I like this idea 
cPanel, WebHost Manager and WHM are registered trademarks of cPanel, L.L.C. for providing its computer software that facilitates the management and configuration of Internet web servers.
please support this, as most of the scanner securities are always complain about this HSTS on cpsrvd ports .
please support this, as most of the scanner securities are always complain about this HSTS on cpsrvd ports .
Replies have been locked on this page!