From 5a9a5e171e186da14dc9d209a17304ed03c6cac8 Mon Sep 17 00:00:00 2001 From: Daniel Stenberg Date: Sun, 8 Jan 2023 10:29:18 +0100 Subject: [PATCH] docs/cmdline-opts/hsts.d: explain hsts more Closes #10258 --- docs/cmdline-opts/hsts.d | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/docs/cmdline-opts/hsts.d b/docs/cmdline-opts/hsts.d index e7b9a4e4ff..173ed0acb0 100644 --- a/docs/cmdline-opts/hsts.d +++ b/docs/cmdline-opts/hsts.d @@ -14,6 +14,11 @@ This option enables HSTS for the transfer. If the file name points to an existing HSTS cache file, that will be used. After a completed transfer, the cache will be saved to the file name again if it has been modified. +If curl is told to use HTTP:// for a transfer involving a host name that +exists in the HSTS cache, it upgrades the transfer to use HTTPS. Each HSTS +cache entry has an individual life time after which the upgrade is no longer +performed. + Specify a "" file name (zero length) to avoid loading/saving and make curl just handle HSTS in memory.