Scott Helme offers insights into web security, HTTPS adoption, and best practices for securing online services, providing articles, workshops, and security tools to help organizations protect against cyber threats. By exploring Scott Helme's curated content, developers can learn about HTTP security headers, Content Security Policy (CSP), and TLS encryption for securing web applications and APIs. Whether you're a web developer, sysadmin, or security professional, Scott Helme offers resources to enhance your cybersecurity knowledge and defend against common vulnerabilities.

Scott Helme

Let's Encrypt now offers 6-day validity certificates through their 'shortlived' profile, accessible via ACME clients like acme.sh. Google Trust Services also provides short-lived certificates with configurable validity periods, even down to one day. The shift toward shorter certificate lifespans (with industry moving to 47-day maximum by 2029) emphasizes the importance of automation, as ACME-based certificate renewal makes validity period largely irrelevant once properly configured.

Blink and you'll miss them: 6-day certificates are here!

Posts and collaboration centered around Networking Dev Operations, including automation of deployments, declarative Infrastructure as Code, and all related tools/technologies.