Hi, [email protected] wrote (28 Jun 2014 09:06:33 GMT) : > I didn't know that one of the feature of HSTS was to prevent certificate > exceptions to be added.
Setting a HSTS header on one's website means: "Dear web client, don't allow users to connect to my website, for as long as I'm telling you to cache this information, unless you can verify the provided server certificate. That's not supposed to be needed, ever. If it happens, then it means there's something fishy going on, and we don't want to even give the user the opportunity to shoot themselves in the foot. Period." ... and then, you get the responsibility to pay for CA cartel certificates for a loooong time. Cheers, -- intrigeri _______________________________________________ tails-support mailing list [email protected] https://mailman.boum.org/listinfo/tails-support To unsubscribe from this list, send an empty email to [email protected].
