Firefox bypass HSTS limitation

Firefox sometimes very rude on what they think its a good / best practice for normal user. But on some cases, power user gonna bypass or try something on Firefox and it won’t let you go through. It has warning, but no “add to exception” option. Why? trick user like stupid as Apple did? REDDIT post

Here is how I tested on my Mac Firefox v67,

Disclaimer: USE as your own RISK, you know what you are doing. May HARM your computer or system.

Step to disable HSTS

// Goto about:config

1. search `network.stricttransportsecurity.preloadlist`
2. Set its value from True to FALSE

Done ~~ 

Then I can let the site I wanna visit add to exception list.

Sample demo, this site SSL cert is expired.

Thanks for this post: https://security.stackexchange.com/questions/102279/can-hsts-be-disabled-in-firefox

Credit: Photo by Yeo Khee on Unsplash