Posts Tagged SSL
The importance of HTTPS login pages – Session hijacking fits in a pocket now
Posted by Mike Beach in Uncategorized on August 4, 2011
You should always prefer SSL-encrypted (HTTPS) login pages on sites over non-SSL (HTTP). Why? Session hijacking is why. First, let me [very briefly] explain the difference for the unfamiliar. SSL stands for Secure Sockets Layer and it’s the encrypted, secure version of HTTP, the protocol that loads web pages. Normal web access is over unencrypted [...]
Google Talk via Empathy
Posted by Mike Beach in Uncategorized on May 24, 2011
Google Talk via Empathy is another IM protocol connection that needs a little tweaking with the settings to get to work. Here’s the run-down on what needs to be set: Go to Edit > Accounts, select Add then Google Talk. Fill in the name, optionally select remeber password and enter your password, then tick down [...]
Ubuntu, Apache, VirtualHosts, and SSL – part 2
Posted by Mike Beach in Uncategorized on May 18, 2011
In my first post about Ubuntu, Apache, VirtualHosts, and SSL I covered generating self-signed certificates and implementing them for Apache VirtualHosts. What I didn’t cover was — if you implemented this without a correct base configuration — you’d end up with some unexpected results if you tried to visit your base domain over SSL. It’s [...]
Forcing SSL for phpMyAdmin
Posted by Mike Beach in Uncategorized on May 16, 2011
After configuring WordPress to force SSL in the administration area, I was in phpMyAdmin and realized that it’s also not configured to do the same by default. From the phpMyAdmin Wiki, add the following line at the end of your /etc/phpmyadmin/config.inc.php file $cfg['ForceSSL'] = TRUE; This will cause sessions to force SSL. If you’re having [...]
Forcing the WordPress administration over SSL
Posted by Mike Beach in Uncategorized on May 14, 2011
From the WordPress administration over SSL guide, add the following directive to your wp-config.php file: define(‘FORCE_SSL_ADMIN’, true); This will cause logins and admin pages to force SSL sessions. If you’re having issues making this work for you, check out my article involving Apache and SSL. Questions, comments, and feedback are welcome.
Ubuntu, Apache, VirtualHosts, and SSL
Posted by Mike Beach in Uncategorized on May 4, 2011
The goal of this guide is to provide you with an Apache SSL configuration with a unique self-signed certificate for each VirtualHost. These self-signed certificates are not intended for e-commerce or public-facing web sites. Rather, they are intended for SSL encryption of administration areas on personal websites or administration programs that have HTTP interfaces. Of [...]
PGP/GPG Keys in Ubuntu Gnome the easy way – Part 2
Posted by Mike Beach in Uncategorized on April 27, 2011
In part 1, I explained how to generate and manage your encryption keys in GNOME. Now I’ll explain how to use your keys to easily encrypt your email. I’m going to only address doing this in Evolution (the default email manager in GNOME). You can access the Evolution email account settings by going to System [...]
Empathy gives ‘untrusted connection’ certificate warning when connecting to Facebook via XMPP
Posted by Mike Beach in Uncategorized on April 12, 2011
Empathy users may have experienced a rather annoying problem if connecting to Facebook via XMPP using Empathy. This problem may affect other services too, such as Gwibber, but I’m not using Gwibber — so I’m only writing about this. When trying to connect, you’ll receive a message like the following: Even if you check “Remember [...]
Connect with me
Show Your Support
If you found information on my blog useful, please consider a small donation to show your support and appreciation. A small donation of even just a few dollars is very much appreciated and can be made quickly and securely through PayPal.
If you're feeling especially generous, or prefer to give a gift, please consider something from my Amazon.com Wish List.
Recent Comments