Loading howto/tls.md +10 −2 Original line number Diff line number Diff line Loading @@ -83,9 +83,12 @@ Then remove the file. ## Enabling HPKP HPKP is generally considered DEPRECATED. It has been [disabled in Google Chrome in 2017][] and should generally not be used anymore. Note: HPKP is generally considered DEPRECATED. It has been [disabled in Google Chrome in 2017][] and should generally not be used anymore. There are [plans to remove it completely][] in our infrastructure. [plans to remove it completely]: https://gitlab.torproject.org/tpo/tpa/team/-/issues/33592 [disabled in Google Chrome in 2017]: https://www.zdnet.com/article/google-chrome-is-backing-away-from-public-key-pinning-and-heres-why/ This section should generally be skipped unless you *really* need key Loading Loading @@ -115,6 +118,11 @@ pinning for some obscure reason. ## Disabling HPKP Note: HPKP is generally considered DEPRECATED. It has been [disabled in Google Chrome in 2017][] and should generally not be used anymore. There are [plans to remove it completely][] in our infrastructure. To disable key pinning ([HPKP][]) on a given domain, just remove the backup key from the repository: Loading Loading
howto/tls.md +10 −2 Original line number Diff line number Diff line Loading @@ -83,9 +83,12 @@ Then remove the file. ## Enabling HPKP HPKP is generally considered DEPRECATED. It has been [disabled in Google Chrome in 2017][] and should generally not be used anymore. Note: HPKP is generally considered DEPRECATED. It has been [disabled in Google Chrome in 2017][] and should generally not be used anymore. There are [plans to remove it completely][] in our infrastructure. [plans to remove it completely]: https://gitlab.torproject.org/tpo/tpa/team/-/issues/33592 [disabled in Google Chrome in 2017]: https://www.zdnet.com/article/google-chrome-is-backing-away-from-public-key-pinning-and-heres-why/ This section should generally be skipped unless you *really* need key Loading Loading @@ -115,6 +118,11 @@ pinning for some obscure reason. ## Disabling HPKP Note: HPKP is generally considered DEPRECATED. It has been [disabled in Google Chrome in 2017][] and should generally not be used anymore. There are [plans to remove it completely][] in our infrastructure. To disable key pinning ([HPKP][]) on a given domain, just remove the backup key from the repository: Loading
