Cloud Cultivator Blog

If your webserver is running Transport Layer Security (TLS) Version 1.0 on port 443, Cloud Cultivator will detect it. TLS 1.0 has several flaws. An attacker can cause connection failures which they can trigger the use of TLS 1.0 to exploit vulnerabilities like BEAST (Browser Exploit Against SSL/TLS). As such, attackers can perform man-in-the-middle attacks and observe the encrypted traffic between the website and its visitors. This allows an attacker who has set up a ‘man-in-the-middle’ server to theoretically recover data that would normally be encrypted. The most likely attack…Continue readingHow to disable TLS 1.0 on Apache or nginx

Cloud Cultivator has a unique feature which tracks changes of your SSL certificate over time. Think git for certs. Whether a new certificate has been issued, a new common name assigned to the certificate, or any number of other changes have happened to your certificate, Cloud Cultivator monitors the attributes of your certificate for changes and reports them to you. This is a robust way to track changes over time to your site’s certificate. This is a robust way for you to have an unbroken chain of event logs on…Continue readingCertificate changelog analysis

Working on getting this blog back to good running condition.

We’re on Twitter! Tweets by CloudCultivator

Just did a full text revamp of https://cloudcultivator.com Check it out.

Just got this WordPress blog up and running with the following tools: WP CLI: http://wp-cli.org/ Let’s Encrypt: https://letsencrypt.org/ Certbot: https://certbot.eff.org/ To keep things up to date, here are my crons: #update letsencrypt certs 45 3 * * * certbot-auto renew #update wp 0 9 * * * cd /var/www/blog-cloudcultivator/ && wp db optimize && wp db repair && wp core update && wp core update-db && wp plugin update –all