[NSFW] Question about ‘HTTP Response Headers’ in Advanced Policies

  • Resolved tomdkat

    (@tomdkat)


    4 years, 2 months ago

    Hi! We’re in the process of changing website hosting providers and at the new host, I noticed the HTTP headers set in the “HTTP Response Headers” section of “Advanced Policies” aren’t being added to the HTTP response. We’re running NinjaFirewall 4.2.4 on WordPress 5.5 and PHP 7.4.8. The old site was running on a LITESPEED server and now it’s running on Apache with FPM-FCGI (according to NinjaFirewall). I can’t get NinjaFirewall to start in Full WAF mode, so it’s running in WordPress WAF mode.

    Does NinjaFirewall need to be running in Full WAF mode for the HTTP response headers to be sent? When hosted at the old host, NinjaFirewall *was* running in Full WAF mode.

    Thanks in advance!

    P.S. Our site is about birth photography. While there isn’t any content of a sexual nature, some of the birth photos are a bit…unusual in that you don’t see those kinds of photos every day. Nothing risque or anything like that. ?? I mention this because I marked the content as being mature in nature.

    The page I need help with: [log in to see the link]

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Author nintechnet

    (@nintechnet)

    It will return the headers even in WordPress WAF mode.
    There must be something wrong with your configuration:

    HTTP/2 200 
server: nginx/1.17.9
date: Mon, 31 Aug 2020 10:29:41 GMT
content-type: text/html; charset=UTF-8
content-length: 67160
vary: Accept-Encoding
vary: User-Agent,Accept-Encoding
last-modified: Sun, 30 Aug 2020 16:58:28 GMT
accept-ranges: bytes
cache-control: max-age=0, no-cache, no-store, must-revalidate
pragma: no-cache
expires: Mon, 29 Oct 1923 20:30:00 GMT
x-proxy-cache: DISABLED

    I can see Nginx is running too. Maybe as a reverse proxy in front of Apache and it doesn’t forward the headers returned by NF?
    Can you ask your host?

    Thread Starter tomdkat

    (@tomdkat)

    Ah, interesting. I’ll check with the website host.

    Thanks!

    Peace…

    • This reply was modified 4 years, 2 months ago by tomdkat. Reason: Adding another tag
Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘[NSFW] Question about ‘HTTP Response Headers’ in Advanced Policies’ is closed to new replies.