Project

General

Profile

Actions
Copy link

Feature #24583

closed

Remove HTTP Referer

Added by Krishna M S over 7 years ago. Updated over 5 years ago.

Status:
Closed
Priority:
Normal
Assignee:
-
Category:
Security
Target version:
-
Start date:
Due date:
% Done:

0%

Estimated time:
Resolution:
Fixed

Description

We are currently running Redmine 2.4.3.stable.12909 on Ubuntu

if we have an external URL in our Intranet Redmine, the external website can track the Intranet origin which poses a security concern.

Please let us know on how to fix this?

Related issues

Related to Redmine - Feature #29660: Add Referrer-Policy header to prevent browsers from sending private data to external sitesClosed

Actions
Actions
Copy link

Also available in: Atom PDF