hstspreload.org icon indicating copy to clipboard operation
hstspreload.org copied to clipboard

Published 20 hours ago verified publisher icon chromium

Automatically prune stale entries

Open lgarron opened this issue 8 years ago • 2 comments

There is a Chromium bug for this, but here's an issue for this repo.

Depends on #35.

Based on discussions at the HSTS preload list meetup, Firefox and Microsoft might be willing to pull from the canonical source of truth (#76) without additional filtering if we implement at least the same level of pruning they currently have. (That is, removing domains that reply over HTTPS but do not have a header that meets the appropriate requirements.)

lgarron avatar Feb 01 '17 01:02 lgarron

s/over HSTS/over HTTPS/

graingert avatar Feb 03 '17 10:02 graingert

I looked into this today. Unfortunately, the preload list is growing several thousand domains per Chrome release. Even optimistically, the new growth would catch up with removed entries in a few months.

lgarron avatar Aug 05 '17 02:08 lgarron