Installing an SSL Certificate on Apache

DigiCert: How to create a CSR (Certificate Signing Request) How to install SSL Certificate on Apache Godaddy: Apache: Generate CSR (Certificate Signing Request) Install a certificate (CentOS) Guide: Moving to HTTPS Once a certificate and key have been purchased and generated, you will need to upload the files to your server. If FTP is enabled … Continue reading “Installing an SSL Certificate on Apache”

Disabling SSLv3 Vulnerability

Projecting CentOS servers against the POODLE SSLv3 Vulnerability. # vi /etc/httpd/conf.d/ssl.conf Find the SSLProtocol directive and remove support for SSLv3: # vi SSLProtocol all -SSLv3 -SSLv2 Restart Apache Source: “How To Protect your Server Against the POODLE SSLv3 Vulnerability”

Simple Steps to Secure WordPress Site

Keep WordPress updated Keep plugins updated Only use trusted plugins Only use trusted themes Choose a secure password No “admin” username Decent hosting Keep regular backups Restrict login attempts (use iThemes Security) Switch on SSL encryption Change database prefix Two-factor authentication (use Google Authenticator) Monitor what’s happening Block access to system files # protect files … Continue reading “Simple Steps to Secure WordPress Site”

OpenSSL Update

Instructions on how to secure your server against the Heartbleed vulnerability: Edit CentOS-Base.repo (vi /etc/yum.repos.d/CentOS-Base.repo) Add the # sign to this URL: mirrorlist=http://… (#mirrorlist=http://…) Delete # sign to this URL: #baseurl=http://… (baseurl=http://…) yum clean all yum update openssl openssl version -a (Confirm the update: exemple: ‘built on: Tue Apr 8 02:39:29 UTC 2014’) rpm -q … Continue reading “OpenSSL Update”

Remove Java on your Mac

java -version If you see 1.6 or 1.7 in the response, go to /System/Library/Java/JavaVirtualMachines/ directory and delete it. Alternatively, use the command line: sudo rm -rf /System/Library/Java/JavaVirtualMachines/ Learn more: “How to disable Java on your Mac“