Consuming HTTPS protected web services with CURL Invoking a HTTPS protected web service with CURL using the flag --insecure is a contradiction, --cacert is the right flag. To show you how to do it right, I have chose a simple web search to Google via HTTPS as an example. Of course,
Subresource Integrity (SRI) According to Mozilla, Subresource Integrity (SRI) is a security feature that enables browsers to verify that files they fetch are delivered without unexpected manipulation. It works by allowing you to provide a cryptographic hash that a fetched file must match. In simple words, it
Setting my website's security headers I ran a test at https://www.htbridge.com/websec/ and it didn't go well. There were some headers related to security that I was not aware of, hence my website grade was not the best. Luckily, I found a web focused only on
Securing my Digital Ocean website with Let's Encrypt Digital Ocean has a complete post to configure nginx as a HTTPS server available at How To Secure Nginx with Let's Encrypt on Ubuntu 14.04, although it is focused on new configurations which is not my case. Hence, I had to struggle with