0

I'm using Chrome Version 32.0.1700.107 under Ubuntu 14.04.2 LTS. If I clear my cache, it looks like no domains stay in the HSTS set, although some should be preloaded. I'm using what I consider safe, old domains, such as mail.google.com, but under "Query Domain" of chrome://net-internals/#hsts I get "Not found" until I actually visit mail.google.com for the first time.

This seems to beat the point of preloading your site. Any thoughts?

ezequiel-garzon
  • 3,047
  • 6
  • 29
  • 33
  • 2
    Chrome 32...? That is over 10 versions (over a year) behind the stable version. Many security bugs have been uncovered and fixed in this timespan. If you still browse with such an old version of Chrome, don't get surprised when your system gets compromised. I strongly suggest to update to the latest version of Chrome. – Rob W Apr 15 '15 at 09:28
  • Thanks a lot for your reply, Rob. I thought maybe that was "current" for Ubuntu =S... I had to run `sudo apt-get -f install` and install the package again. Now I'm running 42.0.2311.90 and it does show mail.google.com et al in the HSTS set. Time to reset passwords, I guess! Thanks again! – ezequiel-garzon Apr 15 '15 at 19:52

0 Answers0