Skip to content

I suggest you ...

← Service Improvement

HSTS (Strict Transport Security)

Hi,

Do you support HSTS (Strict Transport Security) in the future? Maybe it will add more security.

37 votes

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close

We’ll send you updates on this idea

Pseric shared this idea  ·   ·  Report…  ·  Admin →
How important is this to you?

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close
Submitting...
An error occurred while saving the comment
  • Mohamed commented  ·   ·  Report

    There is an article written by CloudWays to do it manually, but since how crucial it is for SEO, there should be a switch to turn it on in the SSL Tab of each application!
    Come on guys, this is a one day job! Lets get it done please

  • Roy Bowen commented  ·   ·  Report

    Adding the HSTS setting manually is cumbersome. It would be a great addition to configure via the server admin console.

  • Anonymous commented  ·   ·  Report

    This 2016 article states that 95% of HTTPS servers are vulnerable to trivial MITM (man-in-the-middle) attacks: https://news.netcraft.com/archives/2016/03/17/95-of-https-servers-vulnerable-to-trivial-mitm-attacks.html

    You can determine if your CW site implements HSTS by running this scan: https://www.ssllabs.com/ssltest/index.html

    Under Protocol Details, Strict Transport Security (HSTS) should be Yes.

    Are there any downsides to implementing HSTS? What are the HSTS pros and cons?

  • Sam commented  ·   ·  Report

    Bump. This would be extremely valuable.

  • Sam commented  ·   ·  Report

    This is really needed.

  • Anonymous commented  ·   ·  Report

    +1

    With Google rank at stake this is now a dealbreaker
    WPEngine do it
    Greenhost do it

Service Improvement: Security

Categories

Feedback and Knowledge Base

(thinking…)