Shield your web site from click-jacking assaults by implementing the Content material Safety Coverage (CSP) header CSP is among the high 10 safe headers of OWASP and is usually beneficial by safety consultants or instruments to implement it. There are lots of choices for constructing the coverage to implement the way you need to disclose … Read more
The Nginx net server is used on greater than 30% of the web site worldwide and rising. Given the proliferation of on-line net threats, one of many challenges for net engineers is to be properly conscious of the best way to harden and safe Nginx. Nginx is understood for its efficiency and light-weight net server/proxy … Read more
You might have a delicate web page that you simply need to password shield. That is also called primary authentication. The excellent news is that it is potential, and it is tremendous simple. Why shield the net web page with a password? Properly, there may very well be many causes together with. Accommodates delicate knowledge … Read more
For those who host your web site on a cloud or a devoted server, you’ll get a devoted IP handle from the internet hosting supplier. Which means that your web site is accessible by area and IP, each of which may trigger duplicate content material if the search engine indexes each URL and IP. Duplicate … Read more
HTTP/2 is the second main model of the HTTP protocol launched in 2015. Round 46.5% of internet sites assist HTTP/2. It has many options, comparable to: Compression of HTTP headers Push Applied sciences Load web page parts in parallel over a single TCP connection Binary protocol Decreased latency Demo from AKAMAI exhibits that HTTP/2 is … Read more
A step-by-step information to allow and check the most recent TLS model protocol 1.3 Earlier than the implementation process, let’s check out what TLS 1.3 is, the way it differs from 1.2, its historical past, and its compatibility. What’s TLS 1.3? TLS (Transport Layer Safety) 1.3 relies on the prevailing 1.2 specs. It’s the newest … Read more
Block all these pointless requests you see within the logs I assume you’ve got checked your web site’s customer logs and have had sufficient of these undesirable requests. They don’t seem to be essentially unhealthy or spammy, however they could not add worth to the corporate. Think about that almost all of hits come by … Read more
Limit or enable useful resource sharing between websites utilizing the CORS header. CORS (Cross-Origin Useful resource Sharing) header is supported in all fashionable browsers. Can I exploit cors? Details about assist for the cors function in main caniuse.com browsers. By default, the browser restricts cross-origin HTTP requests through scripts. And CORS will be helpful for … Read more
Let’s check out getting a FREE SSL/TLS certificates from ZeroSSL and deploying it to Apache and Nginx internet servers. Introduction You will have heard quite a bit in regards to the phrases HTTP and HTTPS. To start with a protocol was outlined referred to as: HyperText Switch Protocol (HTTP). It’s a means of speaking from … Read more
Don’t expose the .git folder, it might include delicate data. Whenever you initialize and deploy your software by way of Git, a .git folder with the required data. If .git folder is accessible by way of an online server or frontend over the Web, it may well probably leak delicate knowledge. Even worse, if credentials … Read more