On 01/29/2017 06:17 PM, Scott Jacobs via gimp-user-list wrote:
> Does this mean that if one visits a normally secured address, and > intentionally goes to the address bar > and removes the s, that one could potentially visit that site unsafely > (unless Firefox etc. intervenes, of > course) ? This depends on the site configuration, actually. To make the downgrade to http next to impossible (unless someone forces it, this requires that you know what you are doing), a useful approach would be to use HSTS: https://wiki.mozilla.org/Security/Guidelines/Web_Security#HTTP_Strict_Transport_Security -- Regards, Michael GPG: 96A8 B38A 728A 577D 724D 60E5 F855 53EC B36D 4CDD _______________________________________________ gimp-user-list mailing list List address: gimp-user-list@gnome.org List membership: https://mail.gnome.org/mailman/listinfo/gimp-user-list List archives: https://mail.gnome.org/archives/gimp-user-list