diff options
author | John-Mark Bell <jmb@netsurf-browser.org> | 2018-04-22 04:09:24 +0000 |
---|---|---|
committer | John-Mark Bell <jmb@netsurf-browser.org> | 2018-04-22 11:39:12 +0000 |
commit | ec1936cc93f2f2f40d26a2913e31952e6ed24d77 (patch) | |
tree | 6c37171f5bd28190e5e8cc0cae989b3d1aa3f6f3 /README | |
parent | 83f5332708d7b8cbb6a2efb76eef4bdeec318b5a (diff) | |
download | netsurf-ec1936cc93f2f2f40d26a2913e31952e6ed24d77.tar.gz netsurf-ec1936cc93f2f2f40d26a2913e31952e6ed24d77.tar.bz2 |
HSTS: prevent llcache being nice
If the server has defined a HSTS policy, then the user no longer
gets to click-through a garbage certificate. Additionally, if
the server has provided a HSTS policy, it should do TLS properly,
so don't permit client-driven TLS version downgrades in that case,
either.
Diffstat (limited to 'README')
0 files changed, 0 insertions, 0 deletions