Timeline for Is URL visible by ISP before HTTP request is 301 redirected to HTTPS?
Current License: CC BY-SA 3.0
6 events
| when toggle format | what | by | license | comment | |
|---|---|---|---|---|---|
| Oct 3, 2015 at 0:47 | comment | added | Stack Exchange Broke The Law | @symcbean "Before a HTTP request is 301-redirected to HTTPS". In the case of HSTS, an HTTP request is not 301-redirected to HTTPS, so it's out-of-scope of the question. | |
| Oct 2, 2015 at 19:09 | comment | added | hvd | @symcbean If you unplug your network cable and turn off your wireless, then even if you enter an HTTP URL, your ISP cannot see which URL you requested, because no HTTP request ever gets sent. I'm pretty sure you wouldn't consider that an interesting scenario. HSTS basically means that even though you enter an HTTP URL, no HTTP request is sent either, so to be honest I don't really see why it would be worth even bringing up. | |
| Oct 2, 2015 at 18:13 | history | edited | StackzOfZtuff | CC BY-SA 3.0 | added 30 characters in body |
| Oct 2, 2015 at 18:04 | comment | added | StackzOfZtuff | @symcbean: true, but OP did not mention HSTS. | |
| Oct 2, 2015 at 17:39 | comment | added | symcbean | No. Not if the browser knows that the site uses HSTS,either through pre-registration or from a previous visit. In that case, it will change the scheme to 'https before sending any request. | |
| Oct 2, 2015 at 12:41 | history | answered | StackzOfZtuff | CC BY-SA 3.0 |