-
Notifications
You must be signed in to change notification settings - Fork 53
TWA 0204
Nemo edited this page Oct 29, 2019
·
1 revision
"Strict-Transport-Security, but no preload"
Setting a preload directive marks the STS header as being eligible for the HSTS Preload list, which is used by all major browsers. Note that setting the preload directive by itself doesn't add your website to the list, you must be eligible as per the criteria and make a submission on the website.
In your webserver, set the preload directive on the Strict-Transport-Security header.