-
Notifications
You must be signed in to change notification settings - Fork 1.8k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
HSTS in AdGuard Home (Strict-Transport-Security) and Http3.0? #1768
Comments
HTTP_Strict_Transport_Security: |
This may be an option, let's see how many upvotes this feature request get. For now the solution would be to configure a reverse proxy (nginx, caddy, or anything else) and configure it to add this header to all responses. |
But I don't want to use an anti-agent, I just want to add it to the original Settings, so I don't need an anti-agent. |
我觉得这个功能很有用👍🏻 |
I find it useful |
对哈😂 |
doh client will not try to use http, I think this function is useless
doh client will not try to use http, I think this function is useless |
Guys, Das @banbendalao has pointed out, if you need it for DOH - it is useless. The only reason for adding it is to make sure that you access the admin interface over HTTPS. |
If I think this function is not necessary, but I feel that the security transfer is necessary. The current product is the product of secure and private DNS AdGuardHome. |
Why closing it? There're many upvotes already |
If it doesn't make sense, don't add it. This feature leads me to the question of security. |
Although the DOH client will not attempt to use HTTP, I feel that this is a secure feature. |
Well, okay then. Reopen if you feel that it needs to be done and we'll see how it goes. |
@ameshkov Have you considered HTTP 3.0 protocol?? |
@Potterli20 HTTP 3.0 will be supported eventually when it will be added to Go stdlib: golang/go#32204 But to be honest, I am skeptical about DNS-over-HTTPS in general. DNS-over-QuicTransport is a much better concept https://datatracker.ietf.org/doc/draft-ietf-dprive-dnsoquic/ |
Ok, that means I like that feature |
Adguardhome requires adding HSTS and forcing Https.
The text was updated successfully, but these errors were encountered: