Online Privacy
85 views | +0 today
Follow
Your new post is loading...
Your new post is loading...
Scooped by Scott Helme
Scoop.it!

Hardening your HTTP response headers

Learn how to increase the security stance of your website by adding or removing some simple HTTP response headers....
more...
No comment yet.
Scooped by Scott Helme
Scoop.it!

Goodbye WordPress, hello Ghost!

I've recently migrated my blog from WordPress to Ghost and I have to say it's awesome! Switching to Ghost is easy, here's how....
more...
No comment yet.
Scooped by Scott Helme
Scoop.it!

Squeezing a little more out of your Qualys score

How to improve your A+ rating on the Qualys SSL test just that little bit more....
more...
No comment yet.
Scooped by Scott Helme
Scoop.it!

Do browsers tell us enough about secure connections?

We've all grown used to checking for 'https' in the address bar of our browser and making sure that we have the little padlock indicator to assure us that the connection is secure. The only problem I find with these...
more...
No comment yet.
Scooped by Scott Helme
Scoop.it!

PageSpeed - Performance optimisation made easy

PageSpeed allows you to easily optimise your website for better performance and faster page load times. Find out how and see the results here....
more...
No comment yet.
Scooped by Scott Helme
Scoop.it!

Getting an A+ on the Qualys SSL Test - Windows Edition

A guide for Windows Server admins to get an A+ rating on the Qualys SSL Test....
more...
No comment yet.
Scooped by Scott Helme
Scoop.it!

Introducing SecurityHeaders.io

Looking for a quick and easy way to assess the security of your HTTP response headers? Take a look at my new service, SecurityHeaders.io, for free....
more...
No comment yet.
Scooped by Scott Helme
Scoop.it!

SSL does not make a site secure!

SSL does not make a site secure! | Online Privacy | Scoop.it
Scott Helme's insight:

SSL does not make a site secure!

more...
Hyker Security's curator insight, August 20, 2014 3:02 AM

SSL just says the communication from a web site is secure. It doesn't say anything about the web site itself or what kind of malicious behavior it has.

Scooped by Scott Helme
Scoop.it!

HotelHippo Insecure, so I've herd - Scott Helme

HotelHippo Insecure, so I've herd - Scott Helme | Online Privacy | Scoop.it
I recently had the pleasure of booking a night away from it all at a nice little hotel in the Lake District. As I'm sure most people with an interest in security do, I couldn't help but shudder at the word 'Secure' being plastered across the site. Prompting some incredibly quick poking around, I easily discovered a method of extracting the personal and sensitive data of thousands of customers that had used the site before me. Not only could this kind of information allow an attacker to launch an effective and convincing phishing scam, there are other concerns too. Continue Reading →
more...
No comment yet.
Scooped by Scott Helme
Scoop.it!

Mitigating a HTTP GET DoS attack - Scott Helme

Mitigating a HTTP GET DoS attack - Scott Helme | Online Privacy | Scoop.it
My blog recently became the target of an orchestrated Denial of Service (DoS) attack using a HTTP GET flood. Here's what I learnt and how I mitigated it.
more...
No comment yet.
Scooped by Scott Helme
Scoop.it!

Getting an A+ rating on the Qualys SSL Test - Scott Helme

Getting an A+ rating on the Qualys SSL Test - Scott Helme | Online Privacy | Scoop.it
Here's how you can improve your SSL configuration and get an A+ rating on the Qualys SSL Test using nginx and Ubuntu.
more...
No comment yet.
Scooped by Scott Helme
Scoop.it!

OCSP Stapling; SSL with added speed and privacy - Scott Helme

Looking at how OCSP stapling makes SSL faster, increases user privacy and how easy it is to implement on your nginx web server.
more...
No comment yet.
Scooped by Scott Helme
Scoop.it!

OCSP Stapling; SSL with added speed and privacy - Scott Helme

Looking at how OCSP stapling makes SSL faster, increases user privacy and how easy it is to implement on your nginx web server.
more...
No comment yet.
Scooped by Scott Helme
Scoop.it!

Creating a PGP Contact Form

How to setup a contact form that uses PGP encryption for better privacy and security of your messages....
more...
No comment yet.
Scooped by Scott Helme
Scoop.it!

HSTS Preloading

HSTS is the great little response header that tells a browser to always use SSL/TLS. Preloading allows you to enforce that before a connection is made....
more...
No comment yet.
Scooped by Scott Helme
Scoop.it!

CloudFlare's great new features and why I won't use them

CloudFlare recently announced two great new features, Keyless SSL and Universal SSL. Here's why I won't use them....
more...
No comment yet.
Scooped by Scott Helme
Scoop.it!

SSLv3 goes to the dogs; POODLE kills off protocol

The SSLv3 protocol has been ravaged by POODLE. Find out how to protect your server and your browser by dropping support for the ageing protocol....
more...
No comment yet.
Scooped by Scott Helme
Scoop.it!

Content Security Policy - An Introduction

CSP allows you to whitelist sources of content the browser can load. An effective solution to XSS, it can be easily deployed and is widely supported....
more...
No comment yet.
Scooped by Scott Helme
Scoop.it!

HPKP: HTTP Public Key Pinning

HPKP is a security policy delivered via a HTTP response header. It allows a host to whitelist cryptographic identities a UA should accept for the host....
more...
No comment yet.
Scooped by Scott Helme
Scoop.it!

Setting up encrypted email is easy, here's how! - Scott Helme

Setting up encrypted email is easy, here's how! - Scott Helme | Online Privacy | Scoop.it
A year on from the first Snowden revelations and the landscape is starting to shift. Learn how to setup encrypted email easily on your own PC.
Scott Helme's insight:

Setting up encrypted email. 

more...
No comment yet.
Scooped by Scott Helme
Scoop.it!

Make your website faster with SPDY - Scott Helme

Make your website faster with SPDY - Scott Helme | Online Privacy | Scoop.it
How I made my blog even faster with SPDY, a web protocol developed by Google primarily aimed at reducing page load time and providing better security.
more...
No comment yet.
Scooped by Scott Helme
Scoop.it!

Replacing DynDNS with CloudFlare DDNS - Scott Helme

With my free DynDNS account about to expire, here's how I setup a replacement DDNS service using CloudFlare.
more...
No comment yet.
Scooped by Scott Helme
Scoop.it!

Enabling Certificate Revocation Checks in Google Chrome - Scott Helme

Enabling Certificate Revocation Checks in Google Chrome - Scott Helme | Online Privacy | Scoop.it
Following on from the announcement of Heartbleed, it's fair to assume that there will be a huge amount of certificate revocations both in progress and in the days and weeks to come. With an increased number of revocations, there's the potential that OCSP/CRL responses may start to take a little longer as the Certificate Authorities load up their lists. Whilst Google Chrome does have a form of certificate revocation check, it's not what you might expect. You need to enable 'normal' revocation checking yourself. Continue Reading →
more...
No comment yet.
Scooped by Scott Helme
Scoop.it!

Setting up HSTS in nginx - Scott Helme

Setting up HSTS in nginx to enforce the use of SSL/TLS on the client side.
more...
No comment yet.