Grinding Gears

SSL vulnerabilities have been big news over the last few years. We've had Heartbleed, CSS Injection, POODLE and FREAK among others. At FreeAgent we take these vulnerabilities very seriously and work to mitigate these as fast as possible. The one we will be looking at today is Weak Diffie-Hellman and the Logjam Attack and some changes we are going to be making in the coming months. SSL configuration can be… Continue reading

SSL is great; widely supported, easy to set-up, relatively cheap these days and (relatively) secure. We've required it from our early days and it hasn't caused us too many issues other than needing us to renew our SSL certificates from time to time and requiring a few more IP addresses than we otherwise would have needed1. That said, I recently visited Portland to attend PuppetConf (all about Puppet, a configuration… Continue reading