beta.blog

Random()

Firefox: Disable Strict-Transport-Security

by on Jan.29, 2019, under Random()

The Strict-Transport-Security, also known as HTTP Strict Transport Security (HSTS), is a web security policy mechanism protecting websites against protocol downgrade attacks and cookie hijacking. If a browser receives this header it will be told to interact with the server only through secure HTTPS connections and never downgrade to the insecure HTTP protocol.

Without doubt this security measure is important, however, it might get in the way during development. In Firefox we can disable these checks by openining:

about:config

in the address bar and searching for the following property:

network.stricttransportsecurity.preloadlist

By default, this property is set to true. We may switch it to false by double-clicking the entry. The changes will take effect immediately

Leave a Comment : more...

Looking for something?

Use the form below to search the site:

Still not finding what you're looking for? Drop a comment on a post or contact us so we can take care of it!