Browsed by
Tag: HTTPS

Monitor For Expiring SSL/TLS Certs with Nagios

Monitor For Expiring SSL/TLS Certs with Nagios

We’ve all been there. Your SSL/TLS certificate on your webserver, mail server, or <insert service name here> has expired and your users are miffed!!! Expiring SSL/TLS certificates have been a problem as long as I can remember and that was at a point when SSL certs could last for several years. Now we have Let’s Encrypt (@letsencrypt) in the fray of SSL/TLS certs and their certs only last a maximum of 90 days. Do you really think expiring certs won’t…

Read More Read More

Adding HSTS To Your Website

Adding HSTS To Your Website

So you’ve moved your website to use SSL/TLS and that’s it? Not quite! Your next step should to test your site and enable HSTS (HTTP Strict Transport Security). Changelog 19Dec2017 – Originally posted 5Apr2018 – Added speed difference verbiage between server config and functions.php or .htaccess for high volume websites Testing via Qualys SSL Labs I *love* the SSL Labs server test from Qualys. It’s free and it does a fantastic job of testing (and subsequently grading) your website for…

Read More Read More

Installing Nagios XI on CentOS 7

Installing Nagios XI on CentOS 7

First things first, why CentOS 7 instead of 6? Well, CentOS 6 has issues with Python updating because of yum. Yes, you can install a separate instance, but it’s not fun and it can break down the road. Second, why not use the OVA provided by Nagios? As of September 2017, the version of Python on the OVA is ancient — 2.6.6. And because yum is tied to it, you can’t update it or you need to install a separate…

Read More Read More