Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Check for HSTS on all redirects on same endpoint #193

Closed
wants to merge 8 commits into from
Closed

Check for HSTS on all redirects on same endpoint #193

wants to merge 8 commits into from

Conversation

echudow
Copy link
Collaborator

@echudow echudow commented May 17, 2019
edited by jsf9k
Loading

This is to resolve Issue #89 Factor in redirects when calculating HSTS by looking at all redirects to the same endpoint for an HSTS header, rather than only the first response and no redirects.

@echudow echudow requested review from konklone and jsf9k May 21, 2019 16:57
@jsf9k jsf9k requested a review from h-m-f-t May 21, 2019 21:12
@jsf9k
Copy link
Member

jsf9k commented May 21, 2019

@echudow, I want to get #192 merged before merging this PR. I am looking at the results of the full test run from that PR now.

jsf9k
jsf9k requested changes May 21, 2019
View reviewed changes
Copy link
Member

@jsf9k jsf9k left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please see my comment/question.

pshtt/pshtt.py Outdated Show resolved Hide resolved
@echudow
Copy link
Collaborator Author

echudow commented May 28, 2019

@jsf9k, I added some code to record the HSTS URL and redirect chain so you can always see which URL the HSTS header that is being checking is coming from. In the output there are now lines that say ": Found HSTS in redirected response from ". In my tests, the code ensures that the redirected URL is on the same endpoint and I can see that in these lines in the output.

@echudow echudow mentioned this pull request Jun 20, 2019
Open
@jsf9k jsf9k self-assigned this Aug 8, 2019
@jsf9k
Copy link
Member

jsf9k commented Aug 9, 2019

This PR resolves #196.

@jsf9k jsf9k requested review from dav3r, felddy, mcdonnnj and a team August 9, 2019 16:23
jsf9k added a commit to cisagov/lambda_functions that referenced this pull request Aug 9, 2019
@jsf9k
Use the latest version of pshtt
ce8c727 
See cisagov/pshtt#193 for details.
@jsf9k jsf9k mentioned this pull request Aug 9, 2019
Closed
jsf9k added a commit to cisagov/scanner that referenced this pull request Aug 9, 2019
@jsf9k
Use the latest version of pshtt
c5c244b 
See cisagov/pshtt#193 for details.
@jsf9k jsf9k mentioned this pull request Aug 9, 2019
Closed
jsf9k added a commit to 18F/domain-scan that referenced this pull request Aug 9, 2019
@jsf9k
Use the latest version of pshtt
ced7319 
See cisagov/pshtt#193 for more details.
@jsf9k jsf9k mentioned this pull request Aug 9, 2019
Closed
jsf9k added a commit to cisagov/orchestrator that referenced this pull request Aug 9, 2019
@jsf9k
Use the latest version of pshtt
919345e 
See cisagov/pshtt#193 for more details.
@jsf9k jsf9k mentioned this pull request Aug 9, 2019
Closed
jsf9k
jsf9k requested changes Aug 9, 2019
View reviewed changes
Copy link
Member

@jsf9k jsf9k left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think there are still a few open questions here that need to be answered.

pshtt/pshtt.py Show resolved Hide resolved
@jsf9k jsf9k requested a review from IanLee1521 August 9, 2019 17:42
@jsf9k jsf9k mentioned this pull request Aug 20, 2019
Open
@felddy felddy removed their request for review March 25, 2020 22:20
@jsf9k
Copy link
Member

jsf9k commented May 18, 2020

Closed due to a lack of attention.

@jsf9k jsf9k closed this May 18, 2020
@jsf9k jsf9k deleted the issue/Factor_in_redirects_when_calculating_HSTS_#89 branch January 23, 2023 14:29
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jsf9k jsf9k jsf9k approved these changes

@konklone konklone Awaiting requested review from konklone

@h-m-f-t h-m-f-t Awaiting requested review from h-m-f-t

@dav3r dav3r Awaiting requested review from dav3r dav3r is a code owner

@mcdonnnj mcdonnnj Awaiting requested review from mcdonnnj mcdonnnj is a code owner

@IanLee1521 IanLee1521 Awaiting requested review from IanLee1521 IanLee1521 is a code owner

@climber-girl climber-girl Awaiting requested review from climber-girl

Assignees

@jsf9k jsf9k

Labels
None yet
Projects
BOD 18-01
Status: Done
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Factor in redirects when calculating HSTS
2 participants
@echudow @jsf9k