Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

automatic redirect of port 80 to 443 (external sites) not compatible with "tight" routing #59

Open
sarnold opened this issue Aug 6, 2020 · 0 comments
Open

automatic redirect of port 80 to 443 (external sites) not compatible with "tight" routing #59

sarnold opened this issue Aug 6, 2020 · 0 comments
Assignees
@sarnold
Labels
documentation Improvements or additions to documentation watch item hard to reproduce or rarely seen

Comments

@sarnold
Copy link
Contributor

sarnold commented Aug 6, 2020

First off, best practices say do not do automatic redirects like that on your web site. Second, fpnd network links are purposely "tight" so we do not take over the default route on a user host. Instead, we route only a few protocols (ie, http/https and dns/dot) between specific ports, which does not take into account working around upstream sites doing such redirects. This does not affect https requests, only http requests to a site doing automatic redirects of 80=>443. Using http with a site that only offers http should still work (and is still horribly insecure).
@sarnold sarnold added documentation Improvements or additions to documentation watch item hard to reproduce or rarely seen labels Aug 6, 2020
@sarnold sarnold self-assigned this Aug 6, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@sarnold sarnold

Labels
documentation Improvements or additions to documentation watch item hard to reproduce or rarely seen
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@sarnold