@homakov, so you can get a browser to trust a cookie from a HTTP response under ... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		donaldstufft on Aug 6, 2013 \| parent \| context \| favorite \| on: Security advisory: Breach and Django @homakov, so you can get a browser to trust a cookie from a HTTP response under a domain protected by HSTS?

antihero on Aug 7, 2013 [–]

Doesn't HSTS just mean that the browser will just always make HTTPS responses?

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact