On 03/07/2013 01:42 AM, intrigeri wrote: > David Kuehling wrote (06 Mar 2013 23:06:58 GMT) : >> since a few days ago I'm now unable to add exceptions to allow access to >> untrusted pages with iceweasel from backports. > > This might be caused by / thanks to STS: > https://en.wikipedia.org/wiki/HTTP_Strict_Transport_Security I don't think this is an issue about STS -- i don't see either of the reported hosts providing Strict-Transport-Security headers: 0 dkg@alice:/tmp/cdtemp.B3GEqz$ wget -S -O /dev/null https://www.baenebooks.com/ --2013-03-07 08:53:38-- https://www.baenebooks.com/ Resolving www.baenebooks.com (www.baenebooks.com)... 208.43.206.184 Connecting to www.baenebooks.com (www.baenebooks.com)|208.43.206.184|:443... connected. HTTP request sent, awaiting response... HTTP/1.1 302 Found Date: Thu, 07 Mar 2013 19:53:12 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 4.0.30319 Location: http://www.baenebooks.com/default.aspx? Set-Cookie: ASP.NET_SessionId=1e535qffswqwb443e3b4otc2; path=/; HttpOnly Set-Cookie: SkinID=1; domain=baenebooks.com; expires=Fri, 07-Mar-2014 19:53:12 GMT; path=/ Cache-Control: private Content-Type: text/html; charset=utf-8 Content-Length: 156 Location: http://www.baenebooks.com/default.aspx? [following] --2013-03-07 08:53:39-- http://www.baenebooks.com/default.aspx? Connecting to www.baenebooks.com (www.baenebooks.com)|208.43.206.184|:80... connected. HTTP request sent, awaiting response... HTTP/1.1 200 OK Date: Thu, 07 Mar 2013 19:53:12 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 4.0.30319 Pragma: no-cache Set-Cookie: SkinID=1; domain=baenebooks.com; expires=Fri, 07-Mar-2014 19:53:12 GMT; path=/ Cache-Control: private Expires: Thu, 07 Mar 2013 19:53:12 GMT Content-Type: text/html; charset=utf-8 Content-Length: 85356 Length: 85356 (83K) [text/html] Saving to: ‘/dev/null’ 100%[======================================>] 85,356 200KB/s in 0.4s 2013-03-07 08:53:40 (200 KB/s) - ‘/dev/null’ saved [85356/85356] 0 dkg@alice:/tmp/cdtemp.B3GEqz$ wget -S -O /dev/null https://www.ekomi.de/ --2013-03-07 08:54:03-- https://www.ekomi.de/ Resolving www.ekomi.de (www.ekomi.de)... 178.32.162.205 Connecting to www.ekomi.de (www.ekomi.de)|178.32.162.205|:443... connected. HTTP request sent, awaiting response... HTTP/1.1 302 Found Server: nginx/0.7.67 Date: Thu, 07 Mar 2013 13:54:14 GMT Content-Type: text/html; charset=ISO-8859-1 Connection: keep-alive X-Powered-By: PHP/5.2.6-1+lenny10 location: /de/ Vary: Accept-Encoding Content-Length: 0 Location: /de/ [following] --2013-03-07 08:54:14-- https://www.ekomi.de/de/ Reusing existing connection to www.ekomi.de:443. HTTP request sent, awaiting response... HTTP/1.1 200 OK Server: nginx/0.7.67 Date: Thu, 07 Mar 2013 13:54:14 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: keep-alive X-Powered-By: PHP/5.2.6-1+lenny16 Set-Cookie: SESS6e514076d46ded10b2796cabcda085e8=599ea2a5d21d363b3d8b7d663caf30bb; expires=Sat, 30 Mar 2013 17:27:34 GMT; path=/; domain=ekomi.co.uk Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Thu, 07 Mar 2013 13:54:14 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Vary: Accept-Encoding X-eKomiTraceItem: goToDrupal Cookie coming from www.ekomi.de attempted to set domain to www.ekomi.de Length: unspecified [text/html] Saving to: ‘/dev/null’ [ <=> ] 59,630 331KB/s in 0.2s 2013-03-07 08:54:14 (331 KB/s) - ‘/dev/null’ saved [59630] 0 dkg@alice:/tmp/cdtemp.B3GEqz$ --dkg
Attachment:
signature.asc
Description: OpenPGP digital signature