![How to Make a Website Secure Again. Adding HSTS Response Header in NGINX How to Make a Website Secure Again. Adding HSTS Response Header in NGINX](/wp-content/uploads/2019/11/hsts-450-16-9.png)
According to a Netcraft's study of the secured (SSL/TLS) sites they monitor, 95% of them are vulnerable to a simple man-in-the-middle attack because they didn't correctly implement HTTP Strict Transport Security (HSTS), a widely-supported security feature that prevents unencrypted HTTP connections to a server. Let's see why it's happening and how we can make your website secure, again.