Configuring Apache to use TLS 1.2

In this brief blog post, I wanted to run through the steps needed to configure Apache to use SSL and TLS. I will also discuss the importance of configuring the apache cryptosystem correctly, by disabling less preferable protocol versions due to a variety of security concerns (SSL 2.0, SSL 3.0, and TLS 1.0).

Continue reading “Configuring Apache to use TLS 1.2”

Ransomware and good security practices (Part 1)

This week there is considerable coverage of a major company being afflicted once more by WannaCry.

It’s been about a year since the initial wave of WannaCry outbreaks spread across the world. In the UK, the NHS was affected to such an extent that it exposed how far cyber security practices, and infrastructure planning, had faltered.

Continue reading “Ransomware and good security practices (Part 1)”