undefined | Better HN

0 pointspugtor10y ago0 comments

Taking a guess from the SSL Labs report[1], that site appears to be using the modern config from Mozilla's toolkit[2], which limits it to browsers from the last few years.

1: https://www.ssllabs.com/ssltest/analyze.html?d=helloworld.le... 2: https://mozilla.github.io/server-side-tls/ssl-config-generat...

0 comments

newman31410y ago

It's also throwing a OSCP error as well as no HSTS/HPKP headers to get to A+ grade.

pugtorOP10y ago

But hey, it's got OCSP stapling!

j / k navigate · click thread line to collapse