all InfoSec news
HSTS vs HTTP 301 redirect
May 27, 2022, noon | /u/foxtrot90210
cybersecurity www.reddit.com
`HSTS` \- user visits http://www.mysite.com, the website will automatically force the user to go to [https://www.mysite.com](https://www.mysite.com). The user never sees the unsecure http version.
​
`301 redirect` \- user visits [https://www.mysite.com](https://www.mysite.com). They ***DO*** establish a connection to the unsecured site, but then redirected to [https://www.mysite.com](https://www.mysite.com).
​
301 redirect is good, but for that split second a MITM attack can happen correct?
More from www.reddit.com / cybersecurity
Jobs in InfoSec / Cybersecurity
IT Security Engineer
@ Timocom GmbH | Erkrath, Germany
Consultant SOC / CERT H/F
@ Hifield | Sèvres, France
Privacy Engineer, Implementation Review
@ Meta | Menlo Park, CA | Seattle, WA
Cybersecurity Specialist (Security Engineering)
@ Triton AI Pte Ltd | Singapore, Singapore, Singapore
SOC Analyst
@ Rubrik | Palo Alto
Consultant Tech Advisory H/F
@ Hifield | Sèvres, France