[Webkit-unassigned] [Bug 199439] Force HSTS for sites that doesn't support HTTPS
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Thu Jul 4 13:58:15 PDT 2019
https://bugs.webkit.org/show_bug.cgi?id=199439
--- Comment #3 from Brent Fulgham <bfulgham at webkit.org> ---
And the site is not setting the upgrade insecure request or HSTS headers?
This could be due to a safari feature that will preferentially visit the HTTPS version of the site once it knows it exists.
Have you tried deleting website data for the origin?
--
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20190704/1c03736a/attachment.html>
More information about the webkit-unassigned
mailing list