While your SSL/TLS is good (A- according to Qualys SSL Labs), please force HTTPS via HSTS. Also enable public key pinning. A good TLS configuration is useless if people aren't using it. The majority of forum users are in fact readers, and always-on HTTPS guarantees integrity and reader privacy.
Cheers
Cheers
No comments:
Post a Comment