ssl | Danny Tsang

Aug/22

Let’s Encrypt With HaProxy

Filed Under Security, Web Server at 1st August 2022 0:01 by Danny

Tags: certificates, eff, encryption, HAProxy, lets encrypt, load balancing, proxy, Security, ssl, tls, Ubuntu

Overview Using EFF’s goal to encrypt the Internet has spawned a project to issue TLS certificates is a great idea and opens up certificates for everyone and not just for those with money. To balance certificates being miss used, EFF … Continue reading →

Jun/18

Securing HAProxy Headers

Filed Under Linux, Networking, Web Server at 4th June 2018 0:01 by Danny

Tags: Google, HAProxy, http, HTTPS, nginx, PHP, proxy, Security, ssl

Overview https://securityheaders.io will give a score of how well placed the HTTP headers are on a site ranging from A+ to F (not sure what the R rating is for). Headers are a powerful meta (invisible to the naked eye) … Continue reading →

Apr/18

Upgrading HAProxy On Ubuntu

Filed Under Infrastructure, Linux, Networking at 2nd April 2018 0:01 by Danny

Tags: HAProxy, ppa, proxy, ssl, Ubuntu

Overview Following my earlier post using Vbernat’s PPA to install the latest Haproxy on Ubuntu, there have been several minor versions since the original post. The steps below will show you how to upgrade to any version offered by Vbernat’s … Continue reading →

Oct/14

Install HA Proxy 1.5 On Ubuntu

Filed Under Networking at 20th October 2014 0:01 by Danny

Tags: cookie, HAProxy, proxy, ssl, Ubuntu

Overview Apache’s HAProxy is a proxy software but it can also load balance between servers. The significance of version 1.5 is it’s ability to handle SSL connections where as before you needed to off load the connection to a different … Continue reading →

Sep/14

Removing Passphrase From SSL Key

Filed Under Linux at 22nd September 2014 0:01 by Danny

Tags: encryption, key, openssl, ssl

It’s good practice to password protect any encryption keys but it’s not always practicle to do so. So in doing this it degrades security for convenience. Create a copy to backup the key in case something goes wrong: cp my.key … Continue reading →

Apr/14

DannyTsang.co.uk And Heartbleed

Filed Under Linux, Website at 12th April 2014 17:27 by Danny

Tags: heartbleed, openssl, ssl

In line with most security recommendation I have updated OpenSSL to a patched version which does not contain the Heartbleed bug. In the mean time I have issued a password reset to all registered users. For more information

Apr/13

IaaS Or VPS Part 3 – Up And Running

Filed Under Infrastructure at 29th April 2013 0:01 by Danny

Tags: Amazon, AWS, DNS, firewall, Iaas, jungledisk, lamp, Linode, mysql, ORACLE, RDP, RDS, ssh, ssl, Ubuntu, VPS, WordPress

Overview Part 2 looked at the differences of AWS/IaaS to VPS. Part 3 will be looking at the cost after a period of time. Running Report The Amazon Web Services have been running for over 3 months with February running … Continue reading →

Apr/13

Apache Error: Invalid method in request /x16/x03/x01

Filed Under Software, Web Server at 15th April 2013 0:01 by Danny

Tags: apache, error, ssl

The error relates to the SSL certificates defined in one of the site configuration. In my case the certificates were missing from the server so the error appear on the webpage when any users tried to access the page.