|
|
|
|
|
|
by pfg
3441 days ago
|
|
|
HSTS preloading enforces "includeSubDomains" for all domains that are submitted[1]. It's certainly possible to use HSTS without includeSubDomains, but not preloaded HSTS, and since all new executive branch domains will be preloaded, that means all subdomains will have to support HTTPS as well. [1]: https://hstspreload.org/ |
|
|