prefs.http_strict_transport_security

author: corvid <devnull@localhost> 2015-06-29 16:29:28 +0000
committer: corvid <devnull@localhost> 2015-06-29 16:29:28 +0000
commit: 476caeec459ecdee0b4e56f77ce46f76dfbfc817 (patch)
tree: 85e965abe35b8e3c4b96fe3dfe1c69635cf695eb /dillorc
parent: 41f2b84001bb63d705c7981492a9637d4d48f5f7 (diff)
1 files changed, 9 insertions, 0 deletions
diff --git a/dillorc b/dillorc
index 18d52dd0..fb37a86f 100644
--- a/dillorc
+++ b/dillorc
@@ -189,6 +189,15 @@ search_url="Google http://www.google.com/search?ie=UTF-8&oe=UTF-8&q=%s"
 # page/image/stylesheet.
 #http_persistent_conns=NO
 
+# This mechanism allows servers to specify that they are only to be contacted
+# through HTTPS and not HTTP.
+#
+# On the whole, this is a valuable security measure against TLS stripping
+# attacks, etc., but in principle a site could contrive to use this as a
+# tracking mechanism. The term is "HSTS super cookie", although note that these
+* HSTS directives are not saved between browser sessions.
+#http_strict_transport_security=YES
+
 # Set the proxy information for http/https.
 # Note that the http_proxy environment variable overrides this setting.
 # WARNING: FTP and downloads plugins use wget. To use a proxy with them,
author	corvid <devnull@localhost>	2015-06-29 16:29:28 +0000
committer	corvid <devnull@localhost>	2015-06-29 16:29:28 +0000
commit	476caeec459ecdee0b4e56f77ce46f76dfbfc817 (patch)
tree	85e965abe35b8e3c4b96fe3dfe1c69635cf695eb /dillorc
parent	41f2b84001bb63d705c7981492a9637d4d48f5f7 (diff)