Re: HSTS policy breaks cpan utility on Windows

in reply to HSTS policy breaks cpan utility on Windows

HSTS stands for "HTTP Strict Transport Security". Its defined in RFC6797

It has about 50 pages, but the gist of it is "Webmasters can declare through HTTP headers that they want to protect their users and only allow secured connections". Which frankly is a very good idea - i'd probably throw a party if the IETF declares unencrypted traffic completely illegal and bans it from existance.

perl -e 'use Crypt::Digest::SHA256 qw[sha256_hex]; print substr(sha256_hex("the Answer To Life, The Universe And Everything"), 6, 2), "\n";'

Comment on Re: HSTS policy breaks cpan utility on Windows Download Code

Replies are listed 'Best First'.
Re^2: HSTS policy breaks cpan utility on Windows by Don Coyote (Hermit) on Nov 21, 2019 at 14:55 UTC
acronym explained ++ Surely encryption is out of scope for HTTP. That's the reason for https. The user should declare which protocol they want to use, and the provider which are available, where required.	[reply]
Re^3: HSTS policy breaks cpan utility on Windows by marto (Cardinal) on Nov 21, 2019 at 15:01 UTC
rt://130819. The end user may not be aware of the underlying issues, a https default makes sense, forcing those who understand the issue to make the change where appropriate.	[reply]
Re^4: HSTS policy breaks cpan utility on Windows by Don Coyote (Hermit) on Nov 21, 2019 at 15:22 UTC
Default to the secure option is fair.	[reply]
Re^5: HSTS policy breaks cpan utility on Windows by syphilis (Archbishop) on Nov 22, 2019 at 01:34 UTC
Re^6: HSTS policy breaks cpan utility on Windows by cavac (Parson) on Nov 22, 2019 at 08:14 UTC
Some notes below your chosen depth have not been shown here

In Section Seekers of Perl Wisdom