Jump to content
Search In
  • More options...
Find results that contain...
Find results in...
Advanced Search

charles_h

Member
  • Posts

    4
  • Joined

  • Last visited

Recent Profile Visitors

The recent visitors block is disabled and is not being shown to other users.

  1. bumping this. can someone from squarespace please comment on this?
  2. bump 2. can someone from squarespace please address this?
  3. Site URL: https://www.havenconnect.com currently squarespace does not allow adding HSTS directives like `includeSubDomains` or `preload`, and they don't allow modifying the `max-age` directive to a year or more. based on my understanding of HSTS, this prevents domains using squarespace from being eligible for preloading. more info here: https://scotthelme.co.uk/hsts-preloading/ i'm not a security expert so my first question is this: am i correct in understanding squarespace's HSTS implementation does not force all users to HTTPS? second question: if my understanding is correct, does squarespace plan to address this security flaw/vulnerability? and if so, when? thanks!
  4. Site URL: https://www.havenconnect.com/success-stories/hip-automated-list-updates?format=amp tl;dr -- how do we force squarespace to insert the trailing slash for the logo link to our homepage? this can cause crawl depth issues with web crawlers. specifically, squarespace does not automatically redirect clicks to that link to the trailing-slash-version of our website. as a result, crawlers report issues with crawl depth because the non-trailing-slash version of the website appears to require 4 or more clicks to reach the homepage. does this make sense? please let me know if you have any questions. thanks!
×
×
  • Create New...