An Interest In:
Web News this Week
- April 24, 2024
- April 23, 2024
- April 22, 2024
- April 21, 2024
- April 20, 2024
- April 19, 2024
- April 18, 2024
Some of Our Sources
- BoingBoing
- Web Designer Wall
- Six Revisions
- Naldz Graphics
- FanExtra - PSD
- My Ink Blog
- CSS Globe
- Android Dissected
- Daily Now
- The Verge
Help Webnuz
Referal links:
September 18, 2017 10:00 pm
Original Link: http://rss.slashdot.org/~r/Slashdot/slashdot/~3/9glgWQNlVqI/chrome-to-force-domains-ending-with-dev-and-foo-to-https-via-preloaded-hsts
Chrome To Force Domains Ending With Dev and Foo To HTTPS Via Preloaded HSTS
Developer Mattias Geniar writes (condensed and edited for clarity): One of the next versions of Chrome is going to force all domains ending with .dev and .foo to be redirected to HTTPs via a preloaded HTTP Strict Transport Security (HSTS) header. This very interesting commit just landed in Chromium: Preload HSTS for the .dev gTLD: This adds the following line to Chromium's preload lists: { "name": "dev", "include_subdomains": true, "mode": "force-https" },{ "name": "foo", "include_subdomains": true, "mode": "force-https" }, It forces any domain on the .dev gTLD to be HTTPs. What should we [developers] do? With .dev being an official gTLD, we're most likely better of changing our preferred local development suffix from .dev to something else. There's an excellent proposal to add the .localhost domain as a new standard, which would be more appropriate here. It would mean we no longer have site.dev, but site.localhost. And everything at *.localhost would automatically translate to 127.0.0.1, without /etc/hosts or dnsmasq workarounds.at Slashdot.
Original Link: http://rss.slashdot.org/~r/Slashdot/slashdot/~3/9glgWQNlVqI/chrome-to-force-domains-ending-with-dev-and-foo-to-https-via-preloaded-hsts
Share this article:
Tweet
View Full Article
Slashdot
Slashdot was originally created in September of 1997 by Rob "CmdrTaco" Malda. Today it is owned by Geeknet, Inc..More About this Source Visit Slashdot