Hacker News new | ask | show | jobs
by CydeWeys 3023 days ago
Greater use of HSTS preloading is also a good way for legitimate sites to prevent being affected by any sort of privacy crackdowns on HSTS. Preloading at the TLD level is ideal.
1 comments
ploxiln 3023 days ago
Preloading at the TLD level is pretty severe, will never be done for .com / .net / .org, and so will never apply to the vast majority of sites people visit. Interesting idea, but unrealistic.
link
CydeWeys 3023 days ago
Yes, it can't be done retroactively, but it can be done for new TLDs that haven't launched yet.
link
kbsletten 3023 days ago
If I remember correctly, Google has done this with the `.dev` TLD they own, so we're already seeing some of it.
link
CydeWeys 3023 days ago
There are currently eight HSTS-preloaded TLDs with more on the way, including the first available for open registration coming soon.
link
pingiun 3022 days ago
Do you have a list of them? I'm especially interested in the TLD for open registration.
link
jwilk 3022 days ago 

  .app
  .bank
  .chrome
  .dev
  .foo
  .google
  .insurance
  .page
Source: https://github.com/chromium/chromium/raw/master/net/http/tra... (grep for TLD)
link
CydeWeys 3022 days ago
See https://registry.google
link