Hacker News new | ask | show | jobs
by jiggawatts 1307 days ago
“Do not redirect from HTTP to HTTPS if source is IP is in list if legacy devices.”

There. I’ve solved it.

Similarly, a filter based on User Agent would likely also work.
1 comments
dopidopHN 1307 days ago
I meant actually solve it by upgrading to HTTPS in a reverse proxy but yeah :)
link
jiggawatts 1307 days ago
They're already behind Akamai, and have a valid certificate and the site is reachable on HTTPS... but redirects back to HTTP.

That's purposeful incompetence, not an accident, oversight, lack of budget, or anything else that can be excused.

link