search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
css: set PRE’s max-width so it doesn’t stretch the viewport
[mina86.com.git] / posts / tls-is-a-yes.en.html
blobe1afb1573d38f455f4cf9dcd4b6736b633e3c883
1 <!-- subject: {TLS} is a yes -->
2 <!-- date: 2016-04-15 20:11:10 -->
3 <!-- categories: Site News -->
4
5 <figure class=nw>
6 <img src=/d/news-hacking.webp width=1000 height=200
7 alt="An image of Hollywood’s idea of ‘hacking’">
8 <figcaption>(still from movie <a href=https://www.imdb.com/title/tt0244244/>Swordfish</a>)</figcaption>
9 </figure>
10
11 <p id=b1><a href=https://letsencrypt.org//2016/04/12/leaving-beta-new-sponsors.html>Let’s
12 Encrypt has left beta</a> and to celebrate, <a href=/>this blog gained TLS
13 support</a>. \o/ If all goes well
14 <a href=/2013/ssl-and-dropping-www-with-mod-rewrite/>it’ll become the
15 default</a> including an
16 <a href=https://en.wikipedia.org/wiki/HTTP_Strict_Transport_Security>HSTS</a>
17 header so everyone can benefit from improved privacy.<a href=/self#f1><sup>1</sup>
18
19 <!-- FULL -->
20
21 <p>If you’re unfamiliar with <a href=https://letsencrypt.org/>Let’s
22 Encrypt</a>, it’s a certificate authority which provides free TLS
23 certificates. It uses automated process to verify whether
24 certificate’s requestor controls the domain certificate is for and
25 takes literally seconds to complete.
26
27 <p>Its sponsors include Mozilla and Google which means that Let’s
28 Encrypt’s certificate is included in those browsers as well as many
29 other software packages and operating systems.
30
31 <p>With nearly zero cost for getting a widely accepted certificate,
32 another obstacle for encrypted web is crumbling. And not a moment
33 too soon since aforementioned
34 <a href=https://konklone.com/post/were-deprecating-http-and-its-going-to-be-okay>Mozilla
35 and Chrome duo plan to ‘deprecate’ plain HTTP</a>.
36
37 <p>If you’re running your own server there’s
38 <a href=https://istlsfastyet.com/>no excuse not to use TLS</a> and
39 if you’re hosting provider doesn’t support it, complain and do it
40 loudly.
41
42 <p id=f1><a href=#b1>1</a> Especially paranoid readers surely noticed the site
43 uses third-party widgets but those same readers are expected to know how to
44 install <a href=https://github.com/gorhill/uBlock>uBlock Origin</a>.
mina86.com template files