Free Post Expect-CT CT is coming, are you ready? We're living in a pretty awesome time right now as we observe significant advances being made in the TLS/PKI ecosystem all around us. One of those advances...
Free Post Cryptojacking Coinhive need to tidy up their act Coinhive have been in the news a lot lately and we often hear about them when a site has suffered a cryptojacking attack. They are the easiest way to get...
Free Post chrome Adding Expect-CT and Expect-Staple entries to the HSTS Preload List Two of the new reporting features in https://report-uri.com currently require additions to the HSTS Preload List in Chromium. Here's a quick guide on how to request...
Free Post EV When your CA turns against you For those that read my blog often you may have seen me talk about EV certificates before. From a technical perspective there are many things that I don't...
Free Post Sponsor You can now sponsor scotthelme.co.uk! I've been writing content on my blog for almost 6 years now and in that time it's seen many transitions, improvements and upgrades but one thing...
Free Post Pi-Hole Catching and dealing with naughty devices on my home network Just last week I wrote about how I improved the security and privacy of all devices on my home network using a Raspberry Pi, Pi-Hole and the new 1.1....
Free Post Report URI Utilising Cloudflare Workers to speed up Report URI At Report URI we're on the receiving end of several billion reports per month and handling that many reports requires a lot of processing. From analysing to see...
Free Post Security Headers Security Headers is changing domain and branding It was a little over 3 years ago when I first launched securityheaders.io and it's come a long way since then. This update doesn't really...
Free Post CloudFlare Securing DNS across all of my devices with Pi-Hole + DNS-over-HTTPS + 1.1.1.1 DNS is the protocol that makes the web work. It's how we convert easy to remember names like facebook.com into hard to remember IP addresses like 157....
Free Post Report URI Introducing the CSP Wizard on Report URI Today I'm really excited to announce one of the first big steps that Report URI is taking towards making CSP even easier to use, deploy and maintain. With...
