Hi! (Crazy idea of the day:)
How about crawling HTTPS websites, recording HSTSÂ [1] headers, and turning the information into HTTPS Everywhere rules automatically? Has this been ever tried? Is it a terrible idea? HSTS headers contain expiration dates, so with the proper database, we would know when to return to a given website for updates. [1]: https://en.wikipedia.org/wiki/HTTP_Strict_Transport_Security -- Lunar <[email protected]>
signature.asc
Description: Digital signature
_______________________________________________ HTTPS-Everywhere mailing list [email protected] https://lists.eff.org/mailman/listinfo/https-everywhere
