[–] bm5k 4y ago ↗ https://www.rfc-editor.org/rfc/rfc9116 [–] eimrine 4y ago ↗ > The file MUST be accessed via HTTP 1.0 or a higher version, and the file access MUST use the "https" scheme (as per Section 2.7.2 of [RFC7230]).Why the Security.txt file should not be downloaded via http? I mean is this particular measure a security thing or a security theatre one.
[–] eimrine 4y ago ↗ > The file MUST be accessed via HTTP 1.0 or a higher version, and the file access MUST use the "https" scheme (as per Section 2.7.2 of [RFC7230]).Why the Security.txt file should not be downloaded via http? I mean is this particular measure a security thing or a security theatre one.
2 comments
[ 4.7 ms ] story [ 18.0 ms ] threadWhy the Security.txt file should not be downloaded via http? I mean is this particular measure a security thing or a security theatre one.