From 0c240f728d489408cda135786cf29244c1cd4d83 Mon Sep 17 00:00:00 2001 From: Josh Rickmar Date: Tue, 31 Jul 2012 09:55:26 -0400 Subject: Add a force_https setting (using the same domain syntax as the whitelist settings) to make all requests to that domain use the HTTPS scheme, similar to HSTS. Install a new file, hsts-preload, into the resource dir. This is a regular config file with a bunch of force_https = ... lines, which is used to implement a preloaded HSTS list. Right now all the domains in this file, except for conformal.com and cyphertite.com, are taken directly from chromium's preloaded HSTS list (and should be synced with this file every so often). Also implement a new setting, preload_strict_transport (enabled by default), to enable or disable the loading of this preloaded HSTS list. Document force_https and preload_strict_transport in the manpage. --- freebsd/Makefile | 1 + 1 file changed, 1 insertion(+) (limited to 'freebsd') diff --git a/freebsd/Makefile b/freebsd/Makefile index a6be6af..9ed119b 100644 --- a/freebsd/Makefile +++ b/freebsd/Makefile @@ -72,6 +72,7 @@ install: all install -m 644 ../xombreroicon128.png $(DESTDIR)$(RESDIR) install -m 644 ../tld-rules $(DESTDIR)$(RESDIR) install -m 644 ../style.css $(DESTDIR)$(RESDIR) + install -m 644 ../hsts-preload $(DESTDIR)$(RESDIR) clean: rm -f xombrero *.o -- cgit 1.4.1-2-gfad0