How to find where (unwanted) security headers are set

In some cases you may get the warning: “Header x has been set to the non-recommended value “**”, or You tried to disable “header”, but this is not possible because it is set by a third party. This means that a third party, not Really Simple SSL has set this header, but incorrectly or with […]