HSTS in AdGuard Home (Strict-Transport-Security) and Http3.0? #1768
Comments
|
HTTP_Strict_Transport_Security: |
ameshkov
changed the title
|
This may be an option, let's see how many upvotes this feature request get. For now the solution would be to configure a reverse proxy (nginx, caddy, or anything else) and configure it to add this header to all responses. |
But I don't want to use an anti-agent, I just want to add it to the original Settings, so I don't need an anti-agent. |
|
我觉得这个功能很有用👍🏻 |
I find it useful |
对哈😂 |
doh client will not try to use http, I think this function is useless
doh client will not try to use http, I think this function is useless |
|
Guys, Das @banbendalao has pointed out, if you need it for DOH - it is useless. The only reason for adding it is to make sure that you access the admin interface over HTTPS. |
If I think this function is not necessary, but I feel that the security transfer is necessary. The current product is the product of secure and private DNS AdGuardHome. |
|
Why closing it? There're many upvotes already |
If it doesn't make sense, don't add it. This feature leads me to the question of security. |
|
Although the DOH client will not attempt to use HTTP, I feel that this is a secure feature. |
|
Well, okay then. Reopen if you feel that it needs to be done and we'll see how it goes. |
|
@ameshkov Have you considered HTTP 3.0 protocol?? |
Potterli20
changed the title
|
@Potterli20 HTTP 3.0 will be supported eventually when it will be added to Go stdlib: golang/go#32204 But to be honest, I am skeptical about DNS-over-HTTPS in general. DNS-over-QuicTransport is a much better concept https://datatracker.ietf.org/doc/draft-ietf-dprive-dnsoquic/ |
Ok, that means I like that feature |
Adguardhome requires adding HSTS and forcing Https.
The text was updated successfully, but these errors were encountered: