-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 On 18.04.15 14:15, Daniel Kahn Gillmor wrote: > On Sat 2015-04-18 12:43:07 +0200, Alexander Buchner wrote:
>> Are there reasons against using HSTS for the whole site? > > Nope, i don't think there are any reasons for enigmail.net to avoid > HSTS. It would be even better to get the domain added to the > preload list: > > https://hstspreload.appspot.com/ > > If you don't have control over the HTTP headers, but you can run > PHP, you may be able to use the header() function [0] like this: HSTS is now enabled; the request for integration into hstspreload is pending. - -Patrick -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQIcBAEBCAAGBQJVNmozAAoJENsRh7ndX2k7PTEP/R9jLyX41Y5GrwvbTBRU6ivb HF0GzJkQIajfqKJim8Lqpu1j8+IQW8egFkbeekiCDLp0F+fa0OT7w5bMaBeaR8rM dNsZSktcxJ/NBkVEs74YOyhRvB3+dhiN47a8/C0GOMrcUsqiXmO3JZxdU7WyN0p+ ygr1OUoZsymuZWyOFBdFuFGZEyxIQFsbRTbR2cksR20wa/v0MjUqga3swHzH6Yli KtFBvR08vqfFFSmUUjO5472YP6ZJwhZQB7wzjYFOKOeS6Xg9BFBkm4N351F21FlX EgK20YwVxayT5feOIrSUyVorm3k2ODa/+toiISucmvVlhpEzBA639ZYhqule8S9j HEO6s5mC/Vn8791uOU1RoVZrhwsoZrMPdr0wmcBiZHLx6ag3kY+S9n7UjWjanEoH KmxaXUUeBYcn5iPvKilCL5Eb1OCkJxu7ghuHmINfJURFnbOSq5XQ3ed9VgbkJqMq yf4tqAh9bbPM36yYIWjUwGbJlwyL9OyRi8kezZDV1IKj/C/xumj8gKfAZ2uDERqY dEU52HChfxLdW1vgseQVyzQOhUxMYgOmYozthLJvCniWLuWBgR/HzXCVLdHmRlAU 2qFIUYC4l2qx4gcHkQCgNdiMFlU2xmPmqiLt0C/nOhoG9M+iDrmX1iVH9N2kpNdr 71hgUeiGBdLRa0ETiqcn =BWVs -----END PGP SIGNATURE----- _______________________________________________ enigmail-users mailing list enigmail-users@enigmail.net To unsubscribe or make changes to your subscription click here: https://admin.hostpoint.ch/mailman/listinfo/enigmail-users_enigmail.net