HSTS preloading should be Opt-In

Question

HSTS preloading should be Opt-In

ojullien opened this issue 5 years ago · 0 comments

do not include the preload directive by default.

The preload directive will have long-term consequences. If the HTTPS configuration is wrong, broken or we don't want to use HTTPS anymore, we will experience problems.