Enabling HTTP Strict Transport Security on debian servers

view full story

http://www.debian-administration.org – I just enabled HTTP Strict Transport Security (HSTS) (https://tools.ietf.org/html/draft-hodges-strict-transport-sec) markers on a bunch of web servers that offer HTTPS. (Distributions)

Submitted by dalinux on 12/16/2010 – Made popular on 12/16/2010

Login or register to post comments
Email this page

Stories similar to Enabling HTTP Strict Transport Security on debian servers

Enable HTTP Strict Transport Security (HSTS) in IIS 7 40 weeks 3 days ago

What is the best way to turn on HTTP Strict Transport Security on an IIS 7 web server?

Can I just through the GUI and add the proper HTTP response header or should I be using appcmd and if so what switches?

Null MX records 1 year 20 weeks ago

The IETF appears to have had a draft to specify a null mx record whereby a domain would not handle mail and mail delivery systems would fail and return a undeliverable system immediately by directing a domain's only MX record to '.' (c/f http://tools.ietf.org/html/draft-delany-nullmx-00)

Is this draft specification followed by most mail servers out there and worth setting up?

SSL lock does not show in browser addres bar with location contains .php 15 weeks 7 hours ago

I have installed SSL Certificate in my hosted machine. And Forced to redirect it to "https" location. It also work when it redirected to location containing .html ext.

both ssl and non-ssl on single port 34 weeks 6 days ago

I would like to make my apache2 webserver serve both http and https on the same port. With the different method i tried it was either not working on http or on https..

How can I do this?

Update: If I enable SSL and then visit the with http I get page like this:

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>400 Bad Request</title> </head&

How to define which SSL certificate nginx sends first with SNI? 9 weeks 5 days ago

I use nginx 1.2.7 with OpenSSL 0.9.8o on Debian Squeeze for about 30 domains. On two of them I enabled SSL which works fine on both.

"No route to host" with ssl but not with telnet 25 weeks 8 hours ago

I have a strange problem with connecting to a https site from one of my servers.

When I type:

telnet puppet 8140

I am presented with a standard telnet console and can talk to the Server as always:

Connected to athena.hidden.tld. Escape character is '^]'. GET / HTTP/1.1 <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>400 Bad Request</title>

Exchange 2007 mail.que keeps growing then shutsdown transport 39 weeks 5 days ago

I have an exchange 2007 SP2 server where the Hub Transport log files, specifically the mail.que database keeps growing to 4GB, then the Exchange Transport service shuts down.

Once i delete the logs folder including the mail.que file and i can restart the transport server.

The problem is it keeps growing to 4GB within 1 hour and the whole cycle repeats.

I'm looking for some advise on how to tro

IPsec on network layer in the OSI-model 2 years 44 weeks ago

Hello everyone,

I want to know the IPsec-Advantages and Disadvantages that arise because of its location on the network layer in the OSI-Model.

HSTS and its effect on sslstrip 39 weeks 1 day ago

Just been doing a little reading after running in to problems using sslstrip against gmail...

https://www.owasp.org/index.php/HTTP...sport_Security

It seems that the big boys are using a strict https policy supported by FF4 and Chrome (but not IE, obviously lol) which effectively renders sslstrip useless these days.

Should it not be possible to create an ettercap filter to strip the heade

Enabling HTTP Strict Transport Security on debian servers

Search

Best published stories

Beautiful linux wallpapers

Tags