Update #1: I've updated the part "Get them into our webserver" by adding a link back to the first SSL/TLS Post where i describe how to correctly create the bundle files! In my last post i've described what you need to do with the new site and intermediate certificates…
SSL/TLS: FREAK vulnerability and a Nagios check for that!
TL;DR Today a new SSL/TLS vulnerability has been made public which uses the old EXPORT ciphers to drive MITM (Man-in-the-middle) Attacks. Detailed information? You can find much more detailed information about that vulnerability at Matthew D. Green's Blog and at Akamai. The check for all of you! I've…
SSL/TLS: How do i get HTTPS for my site with a valid certificate?
For me using SSL/TLS for websites or connections between servers and clients in general - think of PostgreSQL connections or OpenLDAP - is no rocket science and my daily business. But in the last months i read a lot of tweets and articles about that topic and talked to…