xaera@sh.itjust.works to Cybersecurity@sh.itjust.worksEnglish · 1 year agoUse TLS 1.2+mariushosting.comexternal-linkmessage-square3fedilinkarrow-up112arrow-down13file-textcross-posted to: selfhosted@lemmy.world
arrow-up19arrow-down1external-linkUse TLS 1.2+mariushosting.comxaera@sh.itjust.works to Cybersecurity@sh.itjust.worksEnglish · 1 year agomessage-square3fedilinkfile-textcross-posted to: selfhosted@lemmy.world
Enabling HTTP or TLS Compression isn’t the best idea unless you know what you are doing. Creating a tutorial for using bad practice is just coaxing you into a BREACH or some other form of CRIME.
Which step would you change?