Warnings There was a duplicate headers in Versio 5.0.24

  • Hi,

    There was a duplicate headers in versio 5.0.24

    Warnings in the securityheaders.com security report:

    • There was a duplicate Permissions-Policy header.
    • There was a duplicate Strict-Transport-Security header.
    • There was a duplicate X-Content-Type-Options header.
    • There was a duplicate X-Frame-Options header.

    If you reinstall version 5.0.21, the duplicate headers will disappear!?

    The page I need help with: [log in to see the link]

Viewing 4 replies - 1 through 4 (of 4 total)
  • Plugin Author Andrea Ferro

    (@unicorn03)

    Hi @stefi007, thank you for downloading the Headers security Advanced & HSTS WP plugin and opening this topic.

    I will help you with the issue you are experiencing as quickly as possible, the issue you are experiencing with “duplicate headers” can occur for several reasons starting from hosting and going all the way to third party plugins where they implement basic headers.

    Yes version 5.0.21 may not always show you these errors because the logic didn’t implement all the new user experience/site updates.

    To reassure you, these warnings you experience will not cause performance side issues or critical errors on your website.

    If you have any further questions or concerns, I’m here to help.

    Thread Starter Stefi007

    (@stefi007)

    Ok, thanks!

    However, for example, the page hstspreload.org still gives an error message to the multiservice-group.eu domain
    Error: Multiple HSTS headers
    Response error: Multiple HSTS headers (number of HSTS headers: 2).
    There was no error with version 5.0.21.

    The securityheaders.com page shows one warning for this domain multiservice-group.eu:
    There was a duplicate Strict-Transport-Security header.

    Is it somehow related though?

    Plugin Author Andrea Ferro

    (@unicorn03)

    Hi @stefi007, thanks for your new thread, I will try to help you as best as I can in your request.

    I have viewed your two domains featured in this thread, below I will try to give you more information:

    • test.msg.fi > has warnings that will not compromise your domain (functionality and performance) the warnings you notice here:

    Warnings
    Permissions-Policy, Strict-Transport-Security, X-Content-Type-Options, X-Frame-Options (There was a duplicate X-Frame-Options header).

    • multiservice-group.eu > in the case of this domain there are no standard headers installed for this you will only notice a duplicate header

    Warnings
    Strict-Transport-Security (There was a duplicate Strict-Transport-Security header).

    However, I want to update you that I am currently working on version 5.0.25 which will solve and implement new features but most importantly I will be testing a possible solution to duplicate headers, I value feedback and that is why it is already on my list.

    I was facing the same issue. I fixed it by removing the (duplicate) headers in the .htaccess file in the website root folder. To be complete: this was not fixed yet in 5.0.25.

    • This reply was modified 1 year, 4 months ago by krsi78.
Viewing 4 replies - 1 through 4 (of 4 total)
  • The topic ‘Warnings There was a duplicate headers in Versio 5.0.24’ is closed to new replies.