Y
Hacker News
new
|
ask
|
show
|
jobs
by
seisvelas
1908 days ago
Goodbye, ssl stripping attacks, I'll miss you so much! We knew this day would come sooner or later
2 comments
louis-lau
1908 days ago
If https fails it will go back to http. There's no security advantage here. HSTS is still needed.
link
JayPeaEm
1908 days ago
A protocol downgrade goes to http still, so MITM attacks could still happen :(
link