A technical guide to achieving an A+ SSL/TLS rating on Qualys SSL Labs by configuring Nginx with specific protocols, ciphers, and security features.
Analysis of TLS deployment on top US and global news websites, revealing widespread lack of HTTPS security and privacy protections.
The author argues that all websites should use HTTPS by default to protect user privacy and security, making HTTP unethical.
Argues that HTTPS requires certificate verification for security, discussing Python's debate on backporting this fix to version 2.7.
A technical talk on the challenges and proper implementation of TLS/SSL for secure communications, presented at multiple Python conferences.
A concise, urgent guide for sysadmins on the mandatory steps to fix the critical Heartbleed OpenSSL vulnerability and secure web servers.
Apple's modified OpenSSL in macOS overrides verification failures and breaks the standard verification callback, potentially creating security risks.
A guide on setting up an Express.js server to run over HTTPS using a self-signed certificate for local development.
Troubleshooting a specific SSL/TLS error (CURL error 35) when Munki tries to connect to a server, focusing on Apache and CURL protocol configuration.
A guide to debugging and fixing the common OpenSSL::SSL::SSLError in Ruby, explaining SSL/TLS basics and certificate verification.
A practical guide to configuring secure TLS ciphers for Apache, nginx, and HAProxy to achieve a top SSL Server Test score.
A technical guide on how to configure and force specific SSL/TLS versions (like TLSv1) when making HTTPS requests using the Python Requests library.
