[wp-trac] [WordPress Trac] #28520: Mechanism for sending an HSTS header
WordPress Trac
noreply at wordpress.org
Sun Jun 15 20:58:27 UTC 2014
#28520: Mechanism for sending an HSTS header
----------------------------+------------------
Reporter: johnbillion | Owner:
Type: task (blessed) | Status: new
Priority: normal | Milestone: 4.0
Component: Security | Version:
Severity: normal | Resolution:
Keywords: | Focuses:
----------------------------+------------------
Comment (by johnbillion):
Replying to [comment:3 tollmanz]:
> Let's suppose that you run a subdomain MS installation. The constant
method would set an HSTS header for each site, although it may only be
intended for the primary domain or one of the other domains.
Yeah. The same issue applies if your admin area uses a different domain
from the front end too. I've got a patch brewing for this which I'll
upload in the next day or two.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/28520#comment:4>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list