Setting up SSL - Part Two

Last step to get an A rating


If you’ve been given an A grade, there’s a way to level up to A+. You can enable HTTP Strict Transport Security. By doing this.

sudo a2enmod headers

service apache2 restart

nano /etc/apache2/sites-available/default-ssl.conf

hit ctl+v to below closing </VirtualHost> and paste in

Header always set Strict-Transport-Security "max-age=63072000"

service apache2 restart

Return to clear cache and run test again.