Results 1 to 2 of 2

Thread: Please employ HSTS and KPKP

  1. #1
    Join Date
    Nov 2010
    Beans
    2

    Please employ HSTS and KPKP

    While your SSL/TLS is good (A- according to Qualys SSL Labs), please force HTTPS via HSTS. Also enable public key pinning. A good TLS configuration is useless if people aren't using it. The majority of forum users are in fact readers, and always-on HTTPS guarantees integrity and reader privacy.

    Cheers

  2. #2
    Join Date
    Mar 2006
    Location
    Williams Lake
    Beans
    Hidden!
    Distro
    Ubuntu Development Release

    Re: Please employ HSTS and KPKP

    We have no control over any of this, but I know Canonical IS does want us to use https for everything, unfortunately it is the combination of the forum software, and it's inability to use SSO properly that is causing the majority of the problems.

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •