I came across this article on using Automated Certificate Management Environment. Instead of an onerous yearly manual task, certificate deployment and renewal becomes automated. Available now for Apache HTTPD and others. Here’s an example: “We show how to simplify SSL certificates using Let’s Encrypt with Apache httpd on Red Hat Enterprise Linux 7. — Read … Continue reading Automating SSL certificate generation, installation and renewal with ACME
I just ran into a remarkably bad password entry implementation. (https://registrationcenter.intel.com/en/accounts/register/) 1) The password I entered didn’t conform to the policy. 2) There’s a separate *link* to go to get the password policy, which is the usual ridiculous coconut headsets pseudo-safe “upper case, lower case, a symbol and a number.” (HINT: this is NOT safe, … Continue reading Terrible password policies
DO Encrypt your data, and DON’T PANIC. Health Practitioners are required to secure their patient data, both in Canada and the US. Here’s what that means for Psychologists in Ontario.
Omit Needless Software! Omit Needless Software! Omit Needless Software! (after William Strunk, Jr.)
Make your passwords more secure, PLEASE.