Subj : Re: Internet
To   : poindexter FORTRAN
From : Tracker1
Date : Thu May 27 2021 15:41:44

On 5/5/2021 7:18 AM, poindexter FORTRAN wrote:
> -=> Tracker1 wrote to Arelor <=-
> 
>   Tr> In those instances, it's a good idea to just have a small web server at
>   Tr> the raw host that does a redirect to www.
> 
> An apache re-write rule should take care of that without another server
> stanza.
> 
> I use Dreamhost for my blog and a couple of other sites, and one of the
> options that have is how you want www.domain.tld and domain.tld. I usually
> tell them to strip the www and redirect to domain.tld, I presume that a
> rewrite is how they do it.

General rule for web is to "always" use the bare url, or never use it... 
if you create a cookie by default on the raw url, it will be sent to 
other hosts, which may emphatically not be the desired effect.  This has 
and does lead to security leaks in practice.

Imagine the potential problems for dyndns for example, github already 
experienced some of these, which is why the project/account web hosting 
is a different tld with no bare domain usage for web.
-- 
Michael J. Ryan - tracker1@roughneckbbs.com
---
 þ Synchronet þ Roughneck BBS - roughneckbbs.com

.