Revision 7109: /plugins/ssl_requirement
rails plugin to specify that certain actions must be accessed over ssl
Howto: Linux Lighttpd SSL (secure server layer) https configuration and installation
HOWTO: Securing A Website With Client SSL Certificates
#1288 (SSL Client Certificate validation.) - lighttpd - secure, fast, compliant, and very flexible web-server - Trac
patch that adds ssl client certificate support to lighttpd
Docs:SSL - lighttpd - secure, fast, compliant, and very flexible web-server - Trac
some tricks for working with SSL in lighttpd. Includes disabling ye olde SSL protocols that are less secure
SSL Blacklist - CodeFromThe70s.org
firefox extension that can detect weak ssl connections tha tresulted from the Debian OpenSSL kerfuffle
Self Service SSL Certificate Reissuance: GeoTrust
Ruby Discoveries and Idioms: SSL Certificates and Net::HTTPS
Typical Configurations Overview For Nginx HTTP(S) Reverse Proxy/Web Server
Tim Callan's SSL Blog - This morning's MD5 attack - resolved
statement from VeriSign on the md5 SSL attack vector revealed in December 2008
Slicehost Forum - Rails 2.2.2 Postfix SSL Error
default configurations of postfix and rails 2.2.2 don't play nicely together, this describes the issue and how to work around it
CodeRack: EnforceSSL
nifty rack middleware that forces some paths to be accessed over SSL.
ftps - RFC4217 - state of play
Internet Explorer file downloads over SSL do not work with the cache control headers
Qualys SSL Labs
test your SSl server for standards support
Ivan Ristić: Internet SSL Survey 2010 is here!
interesting slides on the state of SSL in 2010, based on an empirical survey of SSL server
SSL with Rails // Collective Idea
So you saw Firesheep and are worried about security in your app? That’s good, you should be. SSL is easy to do and there’s no reason not to these days. Also, the tools are much better than before, so let’s get started.
It's Time to Fix HTTPS
interesting slide deck on the brokenness of HTTPS and PKI
nginx does not suck at ssl
Convergence | Beta
Ideal OpenSSL configuration for Apache and nginx
#689529 - Timeout connecting with TLS 1.2 - Debian Bug report logs
Someone with the same BigIP SSL issue I'm having with webtracking.ohl.com
certificates - How does SSL work? - Information Security Stack Exchange
Tim Dierks: Security Standards and Name Changes in the Browser Wars
Why SSL 3.1 was renamed to TLS 1.0
Introducing CFSSL - CloudFlare's PKI toolkit | CloudFlare Blog
handy tool that automates build SSL certificate bundles
Why Google is Hurrying the Web to Kill SHA-1
Microsoft Word - How to Enable TLS 1.0 in Internet Explorer 6.doc - IE6EnableTLS.pdf
How POODLE Happened — Indistinguishable from Random
SSL Labs Grading 2018 | Qualys Community
Sectigo Root Certificate Expiration Issue - DNSimple Blog