WebAppSec/MozSecureWorld: Difference between revisions

 
Line 221: Line 221:
** Read [http://michael-coates.blogspot.com/2011/07/enhancing-secure-communications-with.html Michael's blog about it]
** Read [http://michael-coates.blogspot.com/2011/07/enhancing-secure-communications-with.html Michael's blog about it]
** Read [https://www.owasp.org/index.php/Transport_Layer_Protection_Cheat_Sheet OWASP TLS]
** Read [https://www.owasp.org/index.php/Transport_Layer_Protection_Cheat_Sheet OWASP TLS]
** Read [http://www.slideshare.net/michael_coates/ssl-screw-ups understand problem=
** Read [http://www.slideshare.net/michael_coates/ssl-screw-ups understand problem]
** click around burp should show no HTTP anytime
** click around burp should show no HTTP anytime
* Only SSL, all scripts, img, SSL everything SSL,
* Only SSL, all scripts, img, SSL everything SSL,
67

edits