Solution: You are currently unable to access because this site uses HSTS. Network errors and attacks are usually temporary, so this page may return to normal later

question:

You are currently unavailable because this site uses HSTS. Network errors and attacks are usually temporary, so this page may return to normal later

describe:

You are currently unavailable because this site uses HSTS. Network errors and attacks are usually temporary, so this page may return to normal later

Concept explanation:

HSTS : HSTS is an acronym for HTTP Strict Transport Security. This is a method used by websites to declare that they can only be accessed using a secure connection (HTTPS). If a website declares an HSTS policy, browsers must reject all HTTP connections and prevent users from accepting insecure SSL certificates. Most major browsers currently support HSTS (only some mobile browsers can't use it).
I didn't understand it after reading it for a long time. In fact, the simple understanding is that if the browser receives a request to load resources using HTTP, it must try to use HTTPS request instead. If HTTPS is not available, the connection must be terminated directly.

solve:

Most Solutions on the Web

The solutions given on the Internet all say to delete the domain security policy. The steps to delete the domain security policy are as follows:

  1. Browser access: chrome://net-internals/#hsts;
  2. After opening the Domain Sercurity Policy interface, first check whether the domain name to be accessed is in the HSTS/PKP domain
    insert image description here
  3. Delete domain security policy insert image description here
    It is normal to understand this step and delete the domain security policy for accessing the domain name. In theory, it can be accessed, but many people may still not be able to access it. The above line of deleting the security policy says You cannot delete preloaded entries , that is, you cannot delete the preloaded security policy. Unfortunately, I checked the Query HSTS/PKP domain again and found that the domain name is still there, basically it is preloaded. Can't we access it?

practical solution

We can roughly know that the root cause of the unreachable access is that HTTPS is unavailable , so we only need to solve the problem of HTTPS unavailable, and naturally it will not be intercepted by the HSTS protocol, so we can start from this point.
The browser shows that it is not secure. We can find that the reason is that the certificate is invalid . The reason why
insert image description here
HTTPS is unavailable is that the certificate invalid , so we only need to reinstall the https certificate. The steps are as follows:

  1. Copy the certificate to localinsert image description here
  2. Local certificate re-installation to Trusted Root Certification Authoritiesinsert image description here
  3. Visit the domain name again and find that it is normal
  4. If it doesn't work, exit the browser and try again

refer to

  1. What is HSTS and why should I use it?

Related: Solution: You are currently unable to access because this site uses HSTS. Network errors and attacks are usually temporary, so this page may return to normal later