Closed pdehaan closed 10 years ago
/cc @oremj @jrconlin
Yeah, let's please redirect HTTP to HTTPS, see https://bugzilla.mozilla.org/show_bug.cgi?id=1050576
Are people going to this URL manually? If not, can we leave :80
turned off?
People may hit this manually. (logged off users, folks wanting to get their phones, the curious, etc.) We're working on a landing page for it.
If there are better auto-boot mechanisms to punt people to https, I'm all for doing that.
@oremj Yeah, see the Bugzilla bug for discussion - a couple of people have reported this problem already. All I'm referring to is needing to redirect http to https, not adding hsts headers.
Y'all keep arguing up in this bug and I'll split this bug right in two (one for HTTP redirect, one for HSTS).
@pdehaan do it
Done. Split HSTS discussion into #270 since the kvetching above seemed to be more centered around the HTTP to HTTPS topic. :heart:
via https://www.expeditedssl.com/simple-ssl-scanner/scan?target_domain=find.firefox.com
3 out of 5 Checks Passed