[ https://issues.apache.org/jira/browse/TS-1668?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Bryan Call updated TS-1668: --------------------------- Attachment: ts1688.diff removed presence bit mask, added configuration options in the api, added documentation, added changes to ts.h.in file > Traffic Server does currently not implement HSTS > ------------------------------------------------ > > Key: TS-1668 > URL: https://issues.apache.org/jira/browse/TS-1668 > Project: Traffic Server > Issue Type: Bug > Components: Security, SSL > Reporter: Igor Galić > Assignee: Bryan Call > Fix For: 6.0.0 > > Attachments: ts1688.diff, ts1688.diff > > > Apache Traffic Server can be used as Reverse Proxy as well as for {{TLS}} > ({{SSL}}) Termination for a huge number of sites. > As such is the ideal point to implement [HTTP Strict Transport > security|http://tools.ietf.org/html/rfc6797]. > I propose enable administrators to globally ({{records.config}}) configure > HSTS for all sites that offer both, HTTP and HTTPS. (This switch, if > backported, should default to off for stable releases.) > We should further also make it possible to disable this setting per-site > ({{ssl_multicert.config}}). -- This message was sent by Atlassian JIRA (v6.1.5#6160)