Y
Hacker News
new
|
ask
|
show
|
jobs
by
jp3141
3447 days ago
even with HSTS?
1 comments
edeirme
3447 days ago
If a website employs the use of HSTS all traffic will be redirected to HTTPS, rendering the support for HTTP redundant.
link
marichards
3447 days ago
Hmm, if you can control the plaintext network isn't there an NTP attack to reverse time and use old compromisable certificates or move it forward past hsts max age?
link