use https for all IETF URLs

[ach-master.git] / TODO.md

diff --git a/TODO.md b/TODO.md
index 638ab52..4e2b84b 100644 (file)
--- a/TODO.md
+++ b/TODO.md
@@ -112,7 +112,7 @@ Contents
 * Webservers:
   Header Strict-Transport-Security "... includeSubDomains": we need to meed to mention that this can be a big pitfall.
   Also do some more research on this!
-  For example: http://tools.ietf.org/html/draft-ietf-websec-strict-transport-sec#section-6.1
+  For example: https://tools.ietf.org/html/draft-ietf-websec-strict-transport-sec#section-6.1
   fix lighttpd HTTP redirection and env vars
   lighthttpd: ssl.ec-curve = "secp384"
     ssl.dh-file = "/etc/lighttpd/dhparams-group16.pem"