HTTP header 'Referrer-Policy' is not supported

Question

Closed this issue 10 months ago · 1 comments

Hello,

I am trying to monitor ssl certificate of my website and getting below alert (domain name changed) -

Status Information: SSL_CERT CRITICAL www.example.com:443: HTTP header 'Referrer-Policy' is not supported.

This is the command used -
check_ssl_cert --all -t 180 -H $ARG1$ -w 30

Could you please suggest what is the cause of this alert and how can that be solved. Let me know if more details required.

Thanks!

Answer 1 · 2023-11-28T11:36:24.000Z

Hi,

You are specifying --all which includes --check-http-headers.

Best practices recommend the usage of a Referrer Policy.

Something like:

referrer-policy: same-origin