Let's Encrypt for shared hosting
I have recently moved my blog to https using free Let's Encrypt (Linux Foundation Project) certificate.
Let's Encrypt service works the best, when you have your own server. You just need to configure some scripts that will regularly request new certificates and everything will work automatically. But, even if your site is on shared hosting, it's still possible to use Let's Encrypt. You can make the certificate on your machine, I used Ubuntu Linux, and then add them in the web interface of your hoster, of course if this feature is supported. Certificate will be valid for 4 month, and then you will need make a new one.
To say the truth, I did it because search engines and browser vendors will discriminate http-only sites very soon. And, of course, for fun. Green lock icon in address bar looks cool. ^_^ #EFF #htaccess #https #ISRG #LinuxFoundation #Qualys #SSLlabs #WordPress
Read more: https://avleonov.com/2016/12/31/lets-encrypt-for-shared-hosting/
I have recently moved my blog to https using free Let's Encrypt (Linux Foundation Project) certificate.
Let's Encrypt service works the best, when you have your own server. You just need to configure some scripts that will regularly request new certificates and everything will work automatically. But, even if your site is on shared hosting, it's still possible to use Let's Encrypt. You can make the certificate on your machine, I used Ubuntu Linux, and then add them in the web interface of your hoster, of course if this feature is supported. Certificate will be valid for 4 month, and then you will need make a new one.
To say the truth, I did it because search engines and browser vendors will discriminate http-only sites very soon. And, of course, for fun. Green lock icon in address bar looks cool. ^_^ #EFF #htaccess #https #ISRG #LinuxFoundation #Qualys #SSLlabs #WordPress
Read more: https://avleonov.com/2016/12/31/lets-encrypt-for-shared-hosting/
Non-reliable Nessus scan results
Do you perform massive #vulnerability scans with Nessus? It might be a bad idea. It seems that #Nessus is not reliable enough to assess hundreds and thousands of hosts in one #scan and can lose some valuable information.
The thing is that sometimes #Nessus does not detect open ports and services correctly. And without successful service detection it will not launch other #vulnerability detection plugins (see #Nessus Scan stages in my post about #Tenable University ). Scan results for the host will be empty, however in reality it may have some critical vulnerabilities, that you simply will not see!
Anyway, it’s good to know when #Nessus was not able to detect services on some hosts and you should not relly on these #scan results. Let’s see how we can figure this out.
#timeout #Tenable #PortScanning #Nessus #https #VulnerabilityManagement
Read more: https://avleonov.com/2018/03/02/non-reliable-nessus-scan-results/
Do you perform massive #vulnerability scans with Nessus? It might be a bad idea. It seems that #Nessus is not reliable enough to assess hundreds and thousands of hosts in one #scan and can lose some valuable information.
The thing is that sometimes #Nessus does not detect open ports and services correctly. And without successful service detection it will not launch other #vulnerability detection plugins (see #Nessus Scan stages in my post about #Tenable University ). Scan results for the host will be empty, however in reality it may have some critical vulnerabilities, that you simply will not see!
Anyway, it’s good to know when #Nessus was not able to detect services on some hosts and you should not relly on these #scan results. Let’s see how we can figure this out.
#timeout #Tenable #PortScanning #Nessus #https #VulnerabilityManagement
Read more: https://avleonov.com/2018/03/02/non-reliable-nessus-scan-results/