Hacker News new | ask | show | jobs
by bm5k 1512 days ago
https://www.rfc-editor.org/rfc/rfc9116
1 comments
eimrine 1512 days ago
> The file MUST be accessed via HTTP 1.0 or a higher version, and the file access MUST use the "https" scheme (as per Section 2.7.2 of [RFC7230]).

Why the Security.txt file should not be downloaded via http? I mean is this particular measure a security thing or a security theatre one.

link