-
Hello,
this is my first time using github actively. Maybe this is not right way to engage into discussion. I'm in my work using your static-file-server and I'm very happy with it. Now I need to dis…
-
## What happened?
When I pass an URL to load a website, say, http://yoururl.com, it redirects to https://yoururl.com
```
options = ChromeOptions()
options.add_argument('--ignore-certificate-errors…
-
## Is your feature request related to a problem? Please describe.
HSTS (HTTP Strict Transport Security) max age is too short at 604800, as shown by SSL Labs.
## Describe the feature you would li…
-
First of all, it is super awesome that code.gov launched with HTTPS and HSTS. Thank you so much!
Even better would be to get code.gov's subdomains taken care of for perpetuity, which can be done by u…
-
Hello,
you generate for modern nginx:
```
# generated 2024-04-09, Mozilla Guideline v5.7, nginx 1.17.7, OpenSSL 1.1.1k, modern configuration, no HSTS, no OCSP
# https://ssl-config.mozilla.org/…
-
Hi Lucy,
I happened to come across your website and it turned out to be inaccessible. Your SSL certificate seems to be expired and your website is set to enforce ```HTTPS``` through the ```HSTS``` …
-
Related to #904, #917, we should consider HSTS as well. Per https://webkit.org/blog/8146/protecting-against-hsts-abuse/ Safari has this.
What's written down there is not entirely unambiguous so I h…
-
HSTS is currently disabled, but it is desired to be on
-
There can be a `HstsJar` just like a `CookieJar`.
-
We need to activate the HSTS (https://en.wikipedia.org/wiki/HTTP_Strict_Transport_Security) with DCDN. It is present in the Alibaba console but not in the Terraform Provider
https://registry.terraf…