Knowledgebase

How do you enable HTTP Strict Transport Security (HSTS)?

HTTP Strict Transport Security (HSTS) informs all user agents that they should only communicate with the web server using HTTPS. This can be used to prevent some attacks that downgrade connections from HTTPS to HTTP.  All our servers support the ability to enable HSTS on either your entire account or just an individual domain.  You can do this by adding the following to your domains .htaccess file:
Header always set Strict-Transport-Security "max-age=31536000" Header always set Strict-Transport-Security "max-age=31536000" 


This header tells the client that interactions with the configured sites should always use HTTPS for one year (31536000 seconds).

  • 0 Users Found This Useful
Was this answer helpful?

Related Articles

"Please wait while your request is being verified..." message sho...

Our cloud web hosting, semi-dedicated, and reseller web hosting plans utilize Imunify360 WAF (web...

Accessing SpamExperts and creating separate SpamExperts users

All cloud web hosting, semi-dedicated, and reseller hosting services include enterprise level...

Can Hawk Host host international domains?

We can host any TLD that's currently supported by ICANN. We run a clustered DNS setup in...

Can I add more RAM/memory to my hosting account?

RAM/memory upgrades are available on all shared, cloud web hosting, and semi-dedicated hosting...

Can I use ImageMagick?

By default we have ImageMagick installed on all of our servers. When it asks for the path, use...