Anonymous ← Cloudways Customer Voice My feedback 1 result found HSTS (Strict Transport Security) 38 votes Vote Vote Vote We're glad you're herePlease sign in to leave feedback Signed in as (Sign out) Close Close Vote We’ll send you updates on this idea 11 comments · Product Improvements: Flexible » Security · Delete… · Admin → How important is this to you? Not at all You must login first! Important You must login first! Critical You must login first! We're glad you're herePlease sign in to leave feedback Signed in as (Sign out) Close Close An error occurred while saving the comment Anonymous commented · Apr 16, 2018 · Edit… · Delete… This 2016 article states that 95% of HTTPS servers are vulnerable to trivial MITM (man-in-the-middle) attacks: https://news.netcraft.com/archives/2016/03/17/95-of-https-servers-vulnerable-to-trivial-mitm-attacks.html You can determine if your CW site implements HSTS by running this scan: https://www.ssllabs.com/ssltest/index.html Under Protocol Details, Strict Transport Security (HSTS) should be Yes. Are there any downsides to implementing HSTS? What are the HSTS pros and cons? Save Submitting... Anonymous supported this idea · Apr 16, 2018
This 2016 article states that 95% of HTTPS servers are vulnerable to trivial MITM (man-in-the-middle) attacks: https://news.netcraft.com/archives/2016/03/17/95-of-https-servers-vulnerable-to-trivial-mitm-attacks.html
You can determine if your CW site implements HSTS by running this scan: https://www.ssllabs.com/ssltest/index.html
Under Protocol Details, Strict Transport Security (HSTS) should be Yes.
Are there any downsides to implementing HSTS? What are the HSTS pros and cons?