Tags: https + apache + hsts

Sort by: Date / Title / URL

  1. Enabling HTTP Strict Transport Security on debian servers - I just enabled HTTP Strict Transport Security (HSTS) markers on a bunch of web servers that offer HTTPS. It's an easy step to take, and it means that users of HSTS-compliant browsers (such as Chromium and the upcoming Firefox 4) or browsers with HSTS-compliant extensions (like Firefox's NoScript or HTTPS-Everywhere) will no longer be vulnerable to attacks like sslstrip once they have made one successful connection to the HSTS-enabled HTTPS web site.
    17-12-2010 to , , , by totpunk and -1 others

First / Previous / Next / Last / Page 1 of 1