Monthly Archives: December 2014

Considerations with HSTS and storing website assets on Amazon S3

With SSL getting pretty cheap through some providers and many guides offering easy instructions to get going on setting up, be sure to approach with caution. Aral Balkan has a pretty well written set of instructions on this website on how to setup SSL with the best practice configuration. It’s all very good information available there. There is one line that you should be very cautious about understanding properly: # Add HSTS add_header Strict-Transport-Security “max-age=31536000;…

Read More