Welcome! Log In Create A New Profile

Advanced

Re: HTTPS Pinning

Previous Message Next Message
Forum List Message List New Topic Print View
Peter Booth via nginx
June 07, 2019 10:24AM
Andreas,

Do you know of any large, high traffic sites that are using HSTS today?

Peter

> On Jun 5, 2019, at 12:56 PM, A. Schulze <sca@andreasschulze.de> wrote:
>
>
>
> Am 05.06.19 um 14:54 schrieb Sathish Kumar:
>> Hi Team,
>>
>> We would like to fix the HTTPS pinning vulnerability on our Nginx and Mobile application Android/iOS. If I enable on Nginx, do we need to add the pinning keys on our application and have to rotate the pinning keys everytime when the SSL cert is renewed.
>>
>> Please advise.
>
> HPKP is more or less deprecated. I suggest to no use it anymore.
> Use HSTS, try to understand the implication of "includeSubDomains" and https://hstspreload.org/
>
> Andreas
> _______________________________________________
> nginx mailing list
> nginx@nginx.org
> http://mailman.nginx.org/mailman/listinfo/nginx

_______________________________________________
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
Reply Quote
RSS
Subject Author Posted

HTTPS Pinning

Sathish Kumar June 05, 2019 08:56AM

Re: HTTPS Pinning

A. Schulze June 05, 2019 12:58PM

Re: HTTPS Pinning

Richard Stanway via nginx June 07, 2019 09:46AM

Re: HTTPS Pinning

Peter Booth via nginx June 07, 2019 10:24AM

Re: HTTPS Pinning

A. Schulze June 07, 2019 11:56AM

RE: HTTPS Pinning

Reinis Rozitis June 07, 2019 12:32PM



Sorry, only registered users may post in this forum.

Click here to login

Online Users

Guests: 200
Record Number of Users: 8 on April 13, 2023
Record Number of Guests: 421 on December 02, 2018
Powered by nginx      Powered by FreeBSD      PHP Powered      Powered by MariaDB      ipv6 ready