Our HSTS header for seccdn and www should include subdomains
Bug #1355381 reported by
François Marier
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Libravatar (obsolete) |
Fix Released
|
Medium
|
François Marier |
Bug Description
While we need cdn.libravatar.org to be available over HTTP, and therefore cannot includeSubdomains in the libravatar.org HSTS header (described in bug 1355378), we should add that option in the HSTS headers for www.libravatar.org and seccdn.
Changed in libravatar: | |
status: | Confirmed → Fix Committed |
Changed in libravatar: | |
status: | Fix Committed → Fix Released |
To post a comment you must log in.