Now With More Security

In the case of Muddled Ramblings and Half-Baked Ideas, the increased security protects only me, but these days some mobile browsers are refusing to connect to sites that aren’t protected by encrypted connections, even if those sites don’t handle sensitive data. We can’t have that, so bring on the encryption! Now you need never fear again; the comments you post will be carefully guarded from snoops and ne’er-do-wells — until they are shown on the screen for the world to see.

You should see a little lock icon by the Site name in your navigation bar now; for a while some plugins I use were violating the security policy, but I think I have them all whipped into shape.

For the curious, I set out to use certbot from the Electronic Frontier Foundation, but found that it didn’t play well with CloudFlare, which I use to speed up the site around the world and to block massive chunks of the Internet from trying to spam me (when CloudFlare blocks them, my server doesn’t have to lift a finger — it doesn’t even know the blockage happened.)

It turns out in the time since I last checked, CloudFlare has begun offering free SSL services even to their lowly non-paying customers. So I got that all set up today and started the process for Knives and the other sites I host.

Other folks who host Web sites: if you don’t use CloudFlare or a competitor, the EFF now makes it free to get encryption certificates and they have what looks like a solid tool to keep those certs up-to-date. ALL Web hosts should check out certbot