Securing ashvysh.com

As of early Nov 2016, ashvysh.com and all sub-domains are now secured better. Earlier this year, HTTPS was setup using the excellent Let’s Encrypt CA. In Nov, I spent a little time setting up the finer bits of web security to move ashvysh.com from a 70/100 B to 90/100 A on Mozilla’s Observatory 😀

It is pretty hard securing a WordPress website. I sadly couldn’t get a good Content Security policy in place, which would’ve upped the rating to a 115/100 A+! Lot of inline scripts make CSP and Sub Resource Integrity (SRI) a little hard to implement.

Much thanks to the Mozilla Observatory, Server-Side TLS guide, and report-uri!

Leave a Reply

Your email address will not be published.