As most of my European readers are keenly aware, the current energy situation in Europe is rather precarious. Rolling blackouts are something that might need to be implemented to keep the grid operational during the coming winter months. While this… Read More ›
Today I ran into a peculiar issue when configuring a GPO policy for 802.1X authentication with WPA2-Enterprise. When you use PEAP for authentication, you need to assign which Certificate Authorities’ (CAs) certificates will be accepted for authentication. I went to… Read More ›
Requesting SSL Certificates can be a bit of a hassle, so today I’m going to show you how to easily generate SSL certificates with the help of OpenSSL and your CA of choice.
HTTPS is everywhere these days, but not many people think that much about which cipher suites are considered safe. Cipher suites determines what encryption algorithms are used to secure the communication over HTTPS, and as time goes on older cipher… Read More ›
Adding custom root CA certificates to Debian is rather easy, but there are some non-obvious pitfalls that you might encounter. Here I’ve tried to collect most things to a single post for your convenience. Adding Custom Root CA Certificates Debian… Read More ›
This week, we’re going for the gold medal, that sweet sweet A+ grade on Qualys SSL Labs. And to achieve this lofty goal of ours, we’ll need to enable one thing, HSTS. This is no small task, and for the… Read More ›
As promised in my last post on F5 load-balancers, this weeks issue of the never-ending guide on how to keep your F5 Big-IPs in the good graces of Qualys SSL Labs will deal with TLSv1.3 demanding that we use cipher… Read More ›