[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: iceweasel: Exceptions for untrusted SSL sites cannot be added any more

On 03/07/2013 01:42 AM, intrigeri wrote:
> David Kuehling wrote (06 Mar 2013 23:06:58 GMT) :
>> since a few days ago I'm now unable to add exceptions to allow access to
>> untrusted pages with iceweasel from backports.
> 
> This might be caused by / thanks to STS:
> https://en.wikipedia.org/wiki/HTTP_Strict_Transport_Security


I don't think this is an issue about STS -- i don't see either of the
reported hosts providing Strict-Transport-Security headers:

0 dkg@alice:/tmp/cdtemp.B3GEqz$ wget -S -O /dev/null
https://www.baenebooks.com/
--2013-03-07 08:53:38--  https://www.baenebooks.com/
Resolving www.baenebooks.com (www.baenebooks.com)... 208.43.206.184
Connecting to www.baenebooks.com
(www.baenebooks.com)|208.43.206.184|:443... connected.
HTTP request sent, awaiting response...
  HTTP/1.1 302 Found
  Date: Thu, 07 Mar 2013 19:53:12 GMT
  Server: Microsoft-IIS/6.0
  X-Powered-By: ASP.NET
  X-AspNet-Version: 4.0.30319
  Location: http://www.baenebooks.com/default.aspx?
  Set-Cookie: ASP.NET_SessionId=1e535qffswqwb443e3b4otc2; path=/; HttpOnly
  Set-Cookie: SkinID=1; domain=baenebooks.com; expires=Fri, 07-Mar-2014
19:53:12 GMT; path=/
  Cache-Control: private
  Content-Type: text/html; charset=utf-8
  Content-Length: 156
Location: http://www.baenebooks.com/default.aspx? [following]
--2013-03-07 08:53:39--  http://www.baenebooks.com/default.aspx?
Connecting to www.baenebooks.com
(www.baenebooks.com)|208.43.206.184|:80... connected.
HTTP request sent, awaiting response...
  HTTP/1.1 200 OK
  Date: Thu, 07 Mar 2013 19:53:12 GMT
  Server: Microsoft-IIS/6.0
  X-Powered-By: ASP.NET
  X-AspNet-Version: 4.0.30319
  Pragma: no-cache
  Set-Cookie: SkinID=1; domain=baenebooks.com; expires=Fri, 07-Mar-2014
19:53:12 GMT; path=/
  Cache-Control: private
  Expires: Thu, 07 Mar 2013 19:53:12 GMT
  Content-Type: text/html; charset=utf-8
  Content-Length: 85356
Length: 85356 (83K) [text/html]
Saving to: ‘/dev/null’

100%[======================================>] 85,356       200KB/s   in
0.4s

2013-03-07 08:53:40 (200 KB/s) - ‘/dev/null’ saved [85356/85356]

0 dkg@alice:/tmp/cdtemp.B3GEqz$ wget -S -O /dev/null https://www.ekomi.de/
--2013-03-07 08:54:03--  https://www.ekomi.de/
Resolving www.ekomi.de (www.ekomi.de)... 178.32.162.205
Connecting to www.ekomi.de (www.ekomi.de)|178.32.162.205|:443... connected.
HTTP request sent, awaiting response...
  HTTP/1.1 302 Found
  Server: nginx/0.7.67
  Date: Thu, 07 Mar 2013 13:54:14 GMT
  Content-Type: text/html; charset=ISO-8859-1
  Connection: keep-alive
  X-Powered-By: PHP/5.2.6-1+lenny10
  location: /de/
  Vary: Accept-Encoding
  Content-Length: 0
Location: /de/ [following]
--2013-03-07 08:54:14--  https://www.ekomi.de/de/
Reusing existing connection to www.ekomi.de:443.
HTTP request sent, awaiting response...
  HTTP/1.1 200 OK
  Server: nginx/0.7.67
  Date: Thu, 07 Mar 2013 13:54:14 GMT
  Content-Type: text/html; charset=utf-8
  Transfer-Encoding: chunked
  Connection: keep-alive
  X-Powered-By: PHP/5.2.6-1+lenny16
  Set-Cookie:
SESS6e514076d46ded10b2796cabcda085e8=599ea2a5d21d363b3d8b7d663caf30bb;
expires=Sat, 30 Mar 2013 17:27:34 GMT; path=/; domain=ekomi.co.uk
  Expires: Sun, 19 Nov 1978 05:00:00 GMT
  Last-Modified: Thu, 07 Mar 2013 13:54:14 GMT
  Cache-Control: store, no-cache, must-revalidate
  Cache-Control: post-check=0, pre-check=0
  Vary: Accept-Encoding
  X-eKomiTraceItem: goToDrupal
Cookie coming from www.ekomi.de attempted to set domain to www.ekomi.de
Length: unspecified [text/html]
Saving to: ‘/dev/null’

    [ <=>                                   ] 59,630       331KB/s   in
0.2s

2013-03-07 08:54:14 (331 KB/s) - ‘/dev/null’ saved [59630]

0 dkg@alice:/tmp/cdtemp.B3GEqz$

	--dkg

Attachment: signature.asc
Description: OpenPGP digital signature

Reply to: