Benjamin Kaduk <ka...@mit.edu> wrote:
> "The HTTP client MUST ignore the presence and content of any HTTPS DNS RRs
> [RFC 9460] for the domain name being verified. This includes, but is not
> limited to, a requirement that the HTTP client MUST NOT apply the strict
> transport security behavior specified in Section 9.5 of [RFC9460]."
Well worded.
--
Michael Richardson <mcr+i...@sandelman.ca> . o O ( IPv6 IøT consulting )
Sandelman Software Works Inc, Ottawa and Worldwide
signature.asc
Description: PGP signature
_______________________________________________ Acme mailing list -- acme@ietf.org To unsubscribe send an email to acme-le...@ietf.org
