[prev in list] [next in list] [prev in thread] [next in thread]
List: webmin-l
Subject: Re: [webmin-l] webmin uses HSTS?
From: Galen Johnson <Galen.Johnson () sas ! com>
Date: 2017-03-28 3:12:39
Message-ID: 1490670759012.9630 () sas ! com
[Download RAW message or body]
If you are using Chrome, you can remove the domain from HSTS by going to \
chrome://net-internals#hsts but this is temporary and will reset the next time you \
hit that domain.
If you want to see where it is being set, look in your web server config for a line \
similar to:
Header always set Strict-Transport-Security "max-age=63072000; includeSubdomains; \
preload"?
=G=
________________________________
From: Yehuda Katz <yehuda@ymkatz.net>
Sent: Monday, March 27, 2017 7:06 PM
To: Webmin users list
Subject: Re: [webmin-l] webmin uses HSTS?
You are probably getting that because the main domain uses HSTS. HSTS doesn't care \
that you went to a different port. You can often go to the IP address of the machine \
instead to get around this.
- Y
On Mon, Mar 27, 2017 at 6:52 PM, Jamie Cameron \
<jcameron@webmin.com<mailto:jcameron@webmin.com>> wrote: On 27/Mar/2017 09:25 Pat \
Erler <perler@gmail.com<mailto:perler@gmail.com>> wrote ..
> I have a webmin (virtualmin actually) server which has an invalid
> certificate. normaly you click (in chrome) something like "continue
> anyways". no i get on this server:
>
> You cannot visit domain.com<http://domain.com> e at the moment because the website \
> uses HSTS. Network errors and attacks are usually temporary, so this page will
> probably work late
>
> how can I disable HSTS in webmin?
We don't actually specifically do anything in Webmin to enable HSTS.
Do you have any custom ciphers set?
------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot
-
Forwarded by the Webmin mailing list at \
webadmin-list@lists.sourceforge.net<mailto:webadmin-list@lists.sourceforge.net> To \
remove yourself from this list, go to \
http://lists.sourceforge.net/lists/listinfo/webadmin-list
[Attachment #3 (text/html)]
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
<style type="text/css" style="display:none"><!-- p { margin-top: 0px; margin-bottom: \
0px; }--></style> </head>
<body dir="ltr" style="font-size:12pt;color:#000000;background-color:#FFFFFF;font-family:Calibri,Arial,Helvetica,sans-serif;">
<p>If you are using Chrome, you can remove the domain from HSTS by going to \
chrome://net-internals#hsts but this is temporary and will reset the next time \
you hit that domain.<br> </p>
<p><br>
</p>
<p>If you want to see where it is being set, look in your web server config for a \
line similar to:<br> </p>
<p><br>
</p>
<p>Header always set Strict-Transport-Security "max-age=63072000; \
includeSubdomains; preload"​<br> </p>
<p><br>
</p>
<p>=G=<br>
</p>
<p><br>
</p>
<div style="color: rgb(33, 33, 33);">
<hr tabindex="-1" style="display:inline-block; width:98%">
<div id="divRplyFwdMsg" dir="ltr"><font face="Calibri, sans-serif" color="#000000" \
style="font-size:11pt"><b>From:</b> Yehuda Katz <yehuda@ymkatz.net><br> \
<b>Sent:</b> Monday, March 27, 2017 7:06 PM<br> <b>To:</b> Webmin users list<br>
<b>Subject:</b> Re: [webmin-l] webmin uses HSTS?</font>
<div> </div>
</div>
<div>
<div dir="ltr">You are probably getting that because the main domain uses HSTS. HSTS \
doesn't care that you went to a different port. <div>You can often go to the IP \
address of the machine instead to get around this.<br> <div><br>
</div>
<div>- Y</div>
</div>
</div>
<div class="gmail_extra"><br>
<div class="gmail_quote">On Mon, Mar 27, 2017 at 6:52 PM, Jamie Cameron <span \
dir="ltr"> <<a href="mailto:jcameron@webmin.com" \
target="_blank">jcameron@webmin.com</a>></span> wrote:<br> <blockquote \
class="gmail_quote" style="margin:0 0 0 .8ex; border-left:1px #ccc solid; \
padding-left:1ex"> On 27/Mar/2017 09:25 Pat Erler <<a \
href="mailto:perler@gmail.com">perler@gmail.com</a>> wrote ..<br> > I have a \
webmin (virtualmin actually) server which has an invalid<br> > certificate. \
normaly you click (in chrome) something like "continue<br> > anyways". \
no i get on this server:<br> ><br>
> You cannot visit <a href="http://domain.com" rel="noreferrer" \
target="_blank">domain.com</a> e at the moment because the website uses HSTS.<br> \
> Network errors and attacks are usually temporary, so this page will<br> > \
probably work late<br> ><br>
> how can I disable HSTS in webmin?<br>
<br>
We don't actually specifically do anything in Webmin to enable HSTS.<br>
<br>
Do you have any custom ciphers set?<br>
<br>
------------------------------<wbr>------------------------------<wbr>------------------<br>
Check out the vibrant tech community on one of the world's most<br>
engaging tech sites, Slashdot.org! <a href="http://sdm.link/slashdot" \
rel="noreferrer" target="_blank"> http://sdm.link/slashdot</a><br>
-<br>
Forwarded by the Webmin mailing list at <a \
href="mailto:webadmin-list@lists.sourceforge.net"> \
webadmin-list@lists.<wbr>sourceforge.net</a><br> To remove yourself from this list, \
go to<br> <a href="http://lists.sourceforge.net/lists/listinfo/webadmin-list" \
rel="noreferrer" target="_blank">http://lists.sourceforge.net/<wbr>lists/listinfo/webadmin-list</a><br>
</blockquote>
</div>
<br>
</div>
</div>
</div>
</body>
</html>
[Attachment #4 (--===============5679330775664739894==)]
------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot
-
Forwarded by the Webmin mailing list at webadmin-list@lists.sourceforge.net
To remove yourself from this list, go to
http://lists.sourceforge.net/lists/listinfo/webadmin-list
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic