'HSTS From Top to Bottom or GTFO' bookmarked by ~webopsweekly | Tefter

HSTS From Top to Bottom or GTFO

troyhunt.com

You Need to Use HSTS From Top to Bottom — HSTS (HTTP Strict Transport Security) is a standard for protecting sites (and users) against protocol downgrade attacks (where a site that should be accessed via HTTPS is offered up over unencrypted HTTP instead), but even if you use HSTS, you have to get it right.

ssl
- Add
2

Appears in lists (1)

Issue 242 - How QUIC has gone from an experiment to being a key Internet protocol

More like this (3)

HTTP Security Headers and How They Work: Whitepaper | Netsparker

netsparker.com

Whitepaper: HTTP Security Headers and How They Work Browser uses response headers for some permission such...
Whitepaper: HTTP Security Headers and How They Work Browser uses response headers for some permission such as: only allow certain domain iframe you, prevent cross site scripting, force HTTPS, disable full referred link…Another good link on this topic is Content Security Policy - An Introduction
- Read
- Add
HTTP headers for the responsible developer

twilio.com

HTTP headers for the responsible developer How HTTP headers can help you build better products for...
HTTP headers for the responsible developer How HTTP headers can help you build better products for a better web for everyone.
- Add
Dangerous Web Security Features

tunetheweb.com
- Add