On Fri, Sep 20, 2019 at 3:35 PM Nick Harper <nharper@google.com> wrote: > As far as I know, every browser that ships an HSTS preload list bases it > off of the one maintained at hstspreload.org. > I've found a bunch of small differences, but I agree that those aren't that important. I am looking at sites like these: https://hstspreload.org/?domain=apple.com https://hstspreload.org/?domain=google.com https://hstspreload.org/?domain=mozilla.org These sites can include sign-in UI, and may not include any sensible "not secure" warning, depending on the browser and device form factor. thanks, Rob
Received on Friday, 20 September 2019 22:42:33 UTC