Comments (4)
Will you be performing the verification manually or automated for the removal of domains from the preload list? If you are going to automate the process, will it perform email verification to one of the following email addresses: [email protected], [email protected], [email protected] and [email protected]?
The current removal procedure is easy to automate without an email check: verify that the site is sending an HSTS header without preload
.
As for the future, TBD. I don't want to reimplement entire parts of domain validation.
Are you going to allow this method for API use to selected domains like cloud.infinitude.me.uk?
Probably not. The preload list is basically still experimental, and non-canonical layers of abstractions are problematic for us right now (a major reasons sites need to be removed is because they were following third-party advice). It's better to encourage stateful interactions with the preload list to go through hstspreload.appspot.com .
from hstspreload.org.
Will you be performing the verification manually or automated for the removal of domains from the preload list? If you are going to automate the process, will it perform email verification to one of the following email addresses: [email protected], [email protected], [email protected] and [email protected]?
Are you going to allow this method for API use to selected domains like cloud.infinitude.me.uk?
from hstspreload.org.
This will probably be obsoleted by #50.
from hstspreload.org.
We've automated as much as we can, for now.
from hstspreload.org.
Related Issues (20)
- Where is the list for hsts preload domain ? HOT 2
- [Feature Request] Support .name Top Level Domain with third level registration HOT 1
- Is a 302 redirect honored? HOT 4
- Cannot pick up the HSTS headers HOT 2
- Unexplained warning HOT 1
- Use GitHub Actions for CI
- "Error: No redirect from HTTP" seems to be wrongly detected HOT 1
- Cannot add lancom.de HOT 1
- An error I cannot understand when submitting the domain travellings.cn HOT 1
- Add FAQ for hstspreload.org not detecting header when other sites do HOT 1
- Change the main branch to `main` HOT 3
- Error: Cannot connect using TLS HOT 5
- chromium-website-ci-builder | Builder HOT 1
- PendingRemoval function has no tests
- Send alert when remove-ineligible-domains cron job fails
- `StatusPendingAutomatedRemoval` is missing from some state transitions
- Preloading using DNS TXT HOT 1
- Ways to preload IP address? HOT 1
- `Strict-Transport-Security` header detected incorrectly HOT 2
- Improve Deployment Recommendations section regarding max-age 2 years HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from hstspreload.org.