nitter
Bil Corry
@bilcorry
13 Oct 2021
.
@hardenize
is complaining about HSTS being set on port 80. Anyone know why that's a problem?
1
Hardenize
@hardenize
13 Oct 2021
What’s the report? I don’t imagine it’s a real problem, we’re being pedantic I suppose. — Ivan
1
Bil Corry
@bilcorry
13 Oct 2021
Replying to
@hardenize
hardenize.com/report/recurly…
Oct 13, 2021 · 8:25 PM UTC
1
Horst Kevin
@HorstKevin8
14 Oct 2021
Replying to
@bilcorry
@hardenize
As the report says, HSTS headers are meant for secure channels (https, port 443) and are ignored on cleartext http.