corenominal

Full stack web developer, interested in all the things, but especially the web, code, design, Linux, OS X, PHP, WordPress, JavaScript & robots.

Tagged: encryption

How to use LetsEncrypt with Multiple Domains on Nginx and Ubuntu image/svg+xml

There are many reasons to set up SSL hosting for your domain, top of all would be that Google is now giving SEO priority to sites that utilize SSL. Regardless of the benefits, it can be a bit intimidating to set up SSL, not to mention expensive. LetsEncrypt is a service that provides free SSL certificates to everyone so we’re going to cover the very basics of how to do this. Don’t worry, it’s pretty painless.

A good step-by-step guide to get up-and-running with Let’s Encrypt on Ubuntu with Nginx.

Let’s Encrypt – Defending Our Brand image/svg+xml

Some months ago, it came to our attention that Comodo Group, Inc., is attempting to register at least three trademarks for the term “Let’s Encrypt,” for a variety of CA-related services. These trademark applications were filed long after the Internet Security Research Group (ISRG) started using the name Let’s Encrypt publicly in November of 2014, and despite the fact Comodo’s “intent to use” trademark filings acknowledge that it has never used “Let’s Encrypt” as a brand.

Comodo Group, Inc. is a business and like all businesses, they exist to make money. That said, I think their behaviour is pretty shitty. I guess they’re worried that they cannot compete with Let’s Encrypt and so have chosen dirty tactics as a form of defense/attack. Seems idiotic to me.

Anyhow, I hope Let’s Encrypt are successful, they’re doing great work and deserve support.

Let’s Encrypt — Leaving Beta image/svg+xml

Since our beta began in September 2015 we’ve issued more than 1.7 million certificates for more than 3.8 million websites. We’ve gained tremendous operational experience and confidence in our systems. The beta label is simply not necessary any more.

This is great news. I’ve been using a number of certificates from this service and while I have no doubt that the service is here to stay, it’s always nice to know that a service provider has enough confidence in their systems to remove the “beta” label.

Automattic Partners with Let’s Encrypt to Enable HTTPS on All WordPress.com Websites image/svg+xml

WordPress.com announced today that it has turned on encryption for custom domains. The network’s subdomains have been HTTPS-enabled since 2014 as part of the Reset the Net campaign against mass surveillance. Today Automattic expanded HTTPS coverage to more than one million custom domains hosted on the network.

This is great news for WordPress.com users. Nice work Automattic :)

Google to Prioritize the Indexing of HTTPS Pages image/svg+xml

Continuing its commitment to secure search, Google announced today it will index a site’s HTTPS pages by default, even if an HTTP equivalent exists.

Google’s goal, it explains, is to eventually have everyone landing on a webpage with a private connection. In an effort to accomplish that goal, Google will now index only HTTPS pages when there is an HTTP equivalent. HTTPS pages are now the priority when both are available.

Good news for the web.

Taking Let’s Encrypt For A Spin image/svg+xml

Let’s Encrypt—a new certificate authority from the Internet Security Research Group (ISRG)—has been promising to help with this (“HTTPS Everywhere”), pledging to be “free, automated and open”.

They just announced public beta today, so I decided to give the beta version of their system a try on wpostats.com.

I’ve been watching the Let’s Encrypt story for months. Now that the service has finally been rolled-out, it’s interesting to read what others are making of it. So far, I’ve only read good things, apart from some grumbles about the 3 month renewal period. Anyhow, I’m looking forward to giving it a try myself.