Kristina_Praxis
-
Posts
2 -
Joined
-
Last visited
Kristina_Praxis's Achievements
Level 1 (1/20)
1
Reputation
-
squarespace HSTS is broken -- can someone please fix?
Kristina_Praxis replied to charles_h's topic in Customize with code
The issue specifically is that we need to add a HSTS derivative for max-age and includeSubDomain. Specifically, our security department scans said that our Squarespace site (www.praxiseng.com) is not following HSTS security best practices because we do not include HSTS attributes to include "max-age=31536000; includeSubDomains;". -
Kristina_Praxis reacted to a post in a topic:
squarespace HSTS is broken -- can someone please fix?
-
squarespace HSTS is broken -- can someone please fix?
Kristina_Praxis replied to charles_h's topic in Customize with code
We have this exact same problem and were told by Squarespace support that we should create custom code within out site to handle this, but also that we run the risk that this custom code "could" cause future incompatibilities. Has anyone done this?
