Your connection is not private

Your connection is not private

Why I do not trust free Wifi and always try to access my site prior to any valuable access from abroad. This is what I got last time in a hotel in London from the Hilton group. They are using a SSL sniffing man in the middle attack on my https connection. Beware to...

Postfix and encryption

After getting my web server ramping up on encryption, the next target is the mail delivery and transport agent. In my case this is postfix and here are the settings for the TLS part: # TLS parameters smtp_use_tls = yes smtp_tls_CAfile =...

Going SSL, Perfect Forward Secrecy, HSTS, HPKP

I’m going all in – SSL. Here is what I used to set it up: Install OpenVPN easy-rsa Version 3 (Find it on github). Moving the easryrsa3 folder to your desired location and edit the vars file to use SHA256 and 4096 key length. I also entered some data for my...