[HTTPS-Everywhere] Always redirect to https when TLSA records exist?
Paul Wise
pabs3 at bonedaddy.net
Fri Sep 12 18:53:29 PDT 2014
On Fri, 2014-09-12 at 18:44 -0700, Seth David Schoen wrote:
> I agree that those are very good signs that the operator cares about
> security, but it's still possible to imagine that they only serve a
> subset of their site resources over HTTPS.
How about a new DNS record for the policy of the website operators?
--
bye,
pabs
http://bonedaddy.net/pabs3/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: This is a digitally signed message part
URL: <https://lists.eff.org/pipermail/https-everywhere/attachments/20140913/c05114eb/attachment.sig>
More information about the HTTPS-Everywhere
mailing list