OCSP is a protocol for checking the validity of certificates, that is, to make sure that they have not been revoked and whether they were actually issued. Enabling OCSP Stapling on the web server side allows you to increase the speed of site opening, since the request to the certification authority is made not by the browser, but by the web server.
Continue reading “Configuring OCSP Stapling”Tag Archives: SSL
Configuring HTTPS in Apache
First, I will give an example of setting up HTTPS in Apache using a self-signed key.
Continue reading “Configuring HTTPS in Apache”Configuring FTPS in ProFTPd
I will give an example of configuring FTPS in ProFTP, and prohibit simple connections without encryption.
Continue reading “Configuring FTPS in ProFTPd”Configuring SSL in Nginx
Let’s say Nginx is installed, the site opens via http, and we want it to open via https.
Continue reading “Configuring SSL in Nginx”How to disable TLS 1.0 and TLS 1.1 in cPanel & WHM
In this article I will give an example of disabling legacy protocols in cPanel & WHM.
Continue reading “How to disable TLS 1.0 and TLS 1.1 in cPanel & WHM”How to disable TLS 1.0 and TLS 1.1 in Nginx
The TLS 1.0 protocol appeared in 1999, TLS 1.1 in 2006, and they will both be considered obsolete in 2020, and will also have to be removed from support in various browsers around March 2020, so you need to disable them. Similarly, SSL 2.0, SSL 3.0 protocols were previously outdated.
Continue reading “How to disable TLS 1.0 and TLS 1.1 in Nginx”Redirect HTTP to HTTPS in Nginx
In this article I will give an example of setting up constant forwarding http requests to https.
Continue reading “Redirect HTTP to HTTPS in Nginx”The problem with multiple SSL on the same IP
If there are several sites with SSL on the same IP address, then old ancient browsers that do not support SNI will not be able to determine which certificate to download and will most likely download the first one that is registered at the beginning of the web server configuration.
Continue reading “The problem with multiple SSL on the same IP”WordPress. Solution “cURL error 60: SSL certificate problem: unable to get local issuer certificate”
Once on one of the sites I noticed in WordPress the menu “Tools” – “Site Health” the following errors:
Continue reading “WordPress. Solution “cURL error 60: SSL certificate problem: unable to get local issuer certificate””Configuring FTPS in cPanel
I will give an example of setting up FTPS for PureFTPd running on a server with cPanel. For ProFTPD, the setup is almost the same.
Continue reading “Configuring FTPS in cPanel”