On Fri, Jul 29, 2016 at 11:54:45 -0400, Hanno Böck wrote: > Please also add an HSTS header to enforce future connections to be > HTTPS and avoid SSL Stripping attacks.
Can't add something that's already there. $ HEAD https://www.debian.org/ | grep Strict Strict-Transport-Security: max-age=15552000 Cheers, Julien
