New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Issue with redirection to HTTPS, Strict Transport Security
Hey!
So i'm having this issue lately with a server of mine, ubuntu 14.04 linux. I do not have any HTTPS enabled or such, however when i visit my website after a small perioud of time it redirects me to https automatically and even if i refresh it still will lead me to the https version. I go and clear cookies & history and it gets back to normal, but it continues again.
I read about this and it was some sort of "Strict Transport Security" which is enabled in nginx.conf? Any idea how to stop this from happening?
Regards, Armand
Comments
add_header strict-transport-security max-age=<> sometime in seconds<>
but as this setting ignored when sent by http, I don't think its the problem as you said it doesn't have https version.
and if its parent domain has hsts set with includeSubDomains it will be inharited to the site.
And are you sure it isn't just a 301 redirect?
Problem fixed with the max-age! Read it on an article aswell.
Thanks @omelas,
Regards, Armand