httpd-bugs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From bugzi...@apache.org
Subject [Bug 55896] Secure page can be cached in browser. Cache control is not set in HTTP header nor HTML header.
Date Wed, 18 Dec 2013 14:37:53 GMT
https://issues.apache.org/bugzilla/show_bug.cgi?id=55896

meirre@mellanox.com changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|RESOLVED                    |REOPENED
         Resolution|INVALID                     |---

--- Comment #4 from meirre@mellanox.com ---
Hi Eric,
thanks for your response.
Your explanation did not fit the current state.

1. How could you explain that the test returned it as cached?
2. If No "no-cahce" flag was entered in the header, how could the response
avoid being cached by the browser?

3. Do you believe that test case by Owasp ZAP tool is wrong?

I would appreciate if you could recheck it.

Thanks,
Meir

-- 
You are receiving this mail because:
You are the assignee for the bug.

---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org


Mime
View raw message