Is redirecting http to https a bad idea?
Going from HTTP to HTTPS is actually a not-so-good idea. For example, an attacker could do a man-in-the-middle attack using a tool like ssl strip . To address this problem, you should use the HSTS protocol .
It's supported by all major browsers, and in use by many of the top sites (e.g. , Paypal, Google).
An HTTP request that includes a session ID cookie is subject to session hijacking attacks. It is important that if you do allow HTTP and redirect to HTTPS, that cookies are marked as secure.
I cant really gove you an answer,but what I can give you is a way to a solution, that is you have to find the anglde that you relate to or peaks your interest. A good paper is one that people get drawn into because it reaches them ln some way.As for me WW11 to me, I think of the holocaust and the effect it had on the survivors, their families and those who stood by and did nothing until it was too late.
Related Questions
PHP Url Validation Error: http://https://example.com (aka https://https://example.com)?
Htaccess rules to redirect respective HTTP links to HTTP and HTTPS to HTTPS?
Redirecting an “HTTPS” to “HTTP” on Microsoft IIS?
Percy Jackson fans! - BAD BAD BAD BAD BAD BAD NEWS!?
Must all IDEA budgets, regular IDEA entitlement and IDEA Recovery budgets, be submitted before an LEA may use IDEA Recovery funds?
Redirecting https requests to two different weblogic servers using the Weblogic proxy and Apache2?