Security News

Microsoft adds HSTS support to Exchange Server 2016 and 2019

2023-08-29 16:19

Microsoft announced today that Exchange Server 2016 and 2019 now come with support for HTTP Strict Transport Security. Microsoft provides detailed information on configuring HSTS on Exchange Server 2016 and 2019 via PowerShell or the Internet Information Services Manager on its documentation website.

#exchange #hsts #microsoft #server

Insecure web still too prevalent: Boffins unveil HSTS wall of shame

2018-07-24 11:38

Red flags: Hunt and Helme pick out sites that can load without crypto How's that migration to "HTTPS everywhere" going? With some Chrome browsers* now flagging insecure sites, there's a lot of...

#boffins #hsts #WEB

Apple Addresses HSTS User Tracking in WebKit

2018-03-20 15:48

Apple has added new protections to the WebKit framework to prevent possible abuse of the HTTP Strict Transport Security (HSTS) security standard to track users. HSTS offers a mechanism through...

#apple #hsts #tracking

Apple Blocks Sites From Abusing HSTS Security Standard to Track Users

2018-03-20 10:18

If you are unaware, the security standard HTTP Strict Transport Security (HSTS) can be abused as a 'supercookie' to surreptitiously track users of almost every modern web browser online without...

#apple #hsts #security

Google Expands HSTS Preload List

2017-09-29 12:29

Google this week announced the addition of more of its top-level domains (TLDs) to the HTTPS Strict Transport Security (HSTS) preload list. read more

#google #hsts

Google to Enforce HSTS on TLDs it Operates

2017-09-28 20:00

Google, through Google Domains, operates many TLDs, and this week said it would begin enforcing HSTS on those TLDs. HSTS forces secure client connections over HTTPS.

#google #hsts