An audit of TLS deployments at small operators
I have spent the past month auditing the TLS deployments of half a dozen small operators. The findings are largely consistent and reveal where the operational gaps live.
Notes from the field
Writing
Long-form thinking on cyber defence, detection, and resilience — from Slackware-era honeypots through to AI-driven SOC analytics.
Showing posts tagged tls — 3 results.
SSL deployment is finally happening
Three years after I first wrote about HTTPS, the deployment is finally reaching critical mass. A walk through what is changing, what is not, and what defenders should know about the current state.
A personal SSL CA
I want HTTPS for my own services without the cost or hassle of a commercial CA. Setting up a personal CA with OpenSSL is half a day's work and produces something genuinely useful for years.