[websec] #4: Clarify that HSTS policy applies to entire host (all ports)

"websec issue tracker" <trac+websec@trac.tools.ietf.org> Fri, 08 July 2011 22:11 UTC

MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit
From: websec issue tracker <trac+websec@trac.tools.ietf.org>
Precedence: bulk
Auto-Submitted: auto-generated
To: jeff.hodges@kingsmountain.com
Date: Fri, 08 Jul 2011 22:11:21 -0000
Message-ID: <070.f2694dbf4e0bed916917f9676fcbe406@trac.tools.ietf.org>
Cc: websec@ietf.org
Subject: [websec] #4: Clarify that HSTS policy applies to entire host (all ports)

#4: Clarify that HSTS policy applies to entire host (all ports)

 Clarify and make more explicit that HSTS policy applies to entire host
 (all ports).

 Also include security rationale, e.g. Secure-flagged cookie eavesdropping,
 XSS vulns, etc.

-- 
-------------------------------------------+--------------------------------
 Reporter:  jeff.hodges@…                  |       Owner:  =JeffH
     Type:  defect                         |      Status:  new   
 Priority:  major                          |   Milestone:        
Component:  strict-transport-sec           |     Version:        
 Severity:  Active WG Document             |    Keywords:        
-------------------------------------------+--------------------------------

Ticket URL: <http://trac.tools.ietf.org/wg/websec/trac/ticket/4>
websec <http://tools.ietf.org/websec/>

[websec] #4: Clarify that HSTS policy applies to … websec issue tracker
Re: [websec] #4: Clarify that HSTS policy applies… websec issue tracker
Re: [websec] #4: Clarify that HSTS policy applies… websec issue tracker
Re: [websec] #4: Clarify that HSTS policy applies… websec issue tracker