Web-sites must not make use of the unsafe-url policy, as this will cause HTTPS URLs to generally be uncovered within the wire more than an HTTP connection, which defeats on the list of significant privacy and security assures of HTTPS. CIDR relies on the concept that IP addresses might be http://XXX
