Configure nginx for PFS and ssllabs.com A Rating | Here is a quick configuration for nginx to achieve an ‘A’ score on ssllabs.com. This example is from Debian Wheezy using OpenSSL 1.0.1e and nginx 1.2.1 and also enables Perfect Forward Secrecy as added security against the NSA or other snooping!
Postfix – Relay local mail to External Email Address | For good practice, one should receive root mail from your Linux server. Linux typically sends all sorts of important cron messages, alerts, logwatch emails, and other info to root@localhost.
I’ll show you how to use Postfix to relay this local mail to your own external email account such as a gmail account!
How to Enable OCSP stapling in Apache | OCSP stapling requires Apache 2.3.3 or later. If you are running a stable Apache 2.4 branch, it is wise to take advantage of this security feature. Here is an example configuration that can be used: