Skip to content

Latest commit

 

History

History
28 lines (16 loc) · 1.13 KB

README.md

File metadata and controls

28 lines (16 loc) · 1.13 KB

hsts-hacky

Forces Chrome/Chromium to use HTTP Strict Transport Security on all HTTPS connections, for all subdomains of the specific hostname you're trying to connect to. Also forces https on all urls, blocks http(but can allow it if you set a var). Can force disable HSTS, or can ignore hosts in hardcoded lists. Auto-ignores hosts that cause redir-loops eg. imdb.com and thus if http isn't allowed(which is the default) it will block the site, else it will load it on http; instead of entering redir-loop trying to https it!

Default max-age is 6 months. Change this in background.js in seconds

var max_age = "15570000";

uMatrix

When using uMatrix, do not set this option: Strict HTTPS: forbid mixed content.

Credits

License

The project had no license, and since I(@ActualizeInMaterial) am not the original author, I am only able to release the modifications that I did to it under UNLICENSE(and/or CC0, your pick!). The rest is, who knows?!...

Check out the original location(from where it was forked): https://github.com/redpois0n/hsts-everywhere-chrome