RE: How is this possible? Apache sends HSTS on a non valid cert but user can proceed, on compatible browser

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: <users@xxxxxxxxxxxxxxxx>
Subject: RE: How is this possible? Apache sends HSTS on a non valid cert but user can proceed, on compatible browser
From: "Eddie B" <eddie@xxxxxxxxxxxxxxx>
Date: Mon, 6 Oct 2014 15:19:25 -0700
In-reply-to: <CAA2aEKr0V=ygk5KsKOZFpB8Jt=Mb023K4Fh7Xi09xc=2GVDMnw@mail.gmail.com>
Organization: MATTERmedia
Reply-to: users@xxxxxxxxxxxxxxxx
Thread-index: AQF2apHpPe/G673zlDCl1cZqZjeDOQImz33ynMVbRaA=

Great answer, thank you Scott.

Do you recommend only setting the HSTS header for https requests?

Follow-Ups:
- Re: How is this possible? Apache sends HSTS on a non valid cert but user can proceed, on compatible browser
  - From: Scott (firstclasswatches.co.uk)

References:
- How is this possible? Apache sends HSTS on a non valid cert but user can proceed, on compatible browser
  - From: Eddie B
- Re: How is this possible? Apache sends HSTS on a non valid cert but user can proceed, on compatible browser
  - From: Scott (firstclasswatches.co.uk)

Prev by Date: Re: How is this possible? Apache sends HSTS on a non valid cert but user can proceed, on compatible browser
Next by Date: Re: How is this possible? Apache sends HSTS on a non valid cert but user can proceed, on compatible browser
Previous by thread: Re: How is this possible? Apache sends HSTS on a non valid cert but user can proceed, on compatible browser
Next by thread: Re: How is this possible? Apache sends HSTS on a non valid cert but user can proceed, on compatible browser
Index(es):
- Date
- Thread

[Index of Archives] [Open SSH Users] [Linux ACPI] [Linux Kernel] [Linux Laptop] [Kernel Newbies] [Security] [Netfilter] [Bugtraq] [Squid] [Yosemite News] [MIPS Linux] [ARM Linux] [Linux Security] [Linux RAID] [Samba] [Video 4 Linux] [Device Mapper]

Powered by Linux