Gratz!! I am browsing basically the same waters (mostly SSL now), so any resources / links could be of a great help :) Once again - sincere congratulations :)
Lots of traceroute to make sure my new DNS settings were in place
openssl for confirming that we don't support TLS 1.0 was very useful. openssl s_client -connect google.com:443 -tls1 -servername google.com in particular
General docs that have helped me as I voyage into networking:
Hi Anna
I'm struggling with the same issue,
I meant to ask, what certificate providers did you use?
and does setting ssl-endpoint means that you have to renew it manually when the certificate expires?
and does this means that if our websites forces browser to use a secure connection that would be a down time if the certificate expires
I am new to this and I've read tons of articles which made me more confused
For further actions, you may consider blocking this person and/or reporting abuse
We're a place where coders share, stay up-to-date and grow their careers.
This week, I... learned how to set up SSL, disable TLS 1.0, and update our DNS settings without taking down production!!!
Gratz!! I am browsing basically the same waters (mostly SSL now), so any resources / links could be of a great help :) Once again - sincere congratulations :)
I should note that I've essentially done this with training wheels since we're on Heroku 😂 Here are the resources I used to set this up:
traceroute
to make sure my new DNS settings were in placeopenssl
for confirming that we don't support TLS 1.0 was very useful.openssl s_client -connect google.com:443 -tls1 -servername google.com
in particularGeneral docs that have helped me as I voyage into networking:
Can you please run down the steps you've followed to achieve this.
Sure! I'm using Heroku for this though, so a lot of the "hard stuff" was abstracted away. My basic process was like so:
traceroute
to check that domain resolves to the new SSL endpointheroku certs:remove
command from the CLIopenssl
or SSL Labs (takes much longer but is interesting)Hi Anna
I'm struggling with the same issue,
I meant to ask, what certificate providers did you use?
and does setting ssl-endpoint means that you have to renew it manually when the certificate expires?
and does this means that if our websites forces browser to use a secure connection that would be a down time if the certificate expires
I am new to this and I've read tons of articles which made me more confused