[Webkit-unassigned] [Bug 199439] Force HSTS for sites that doesn't support HTTPS

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Thu Jul 4 13:58:15 PDT 2019


--- Comment #3 from Brent Fulgham <bfulgham at webkit.org> ---
And the site is not setting the upgrade insecure request or HSTS headers?

This could be due to a safari feature that will preferentially visit the HTTPS version of the site once it knows it exists.

Have you tried deleting website data for the origin?

You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20190704/1c03736a/attachment.html>

More information about the webkit-unassigned mailing list