Mo @gamamb·Feb 5, 2016HTTP Security Headers Check https://securityheaders.io -- finally. This should be added to @qualys ssltest.11
'(·)@allgebrah·Feb 5, 2016Replying to @gamamb@gamamb HPKP and STS are foot guns, CSP is great but has no obvious best candidate imo, the others I don't know much about.11
'(·)@allgebrahReplying to @allgebrah@gamamb Reminds me of early ssltest that gave impossibly awful grades to self signed certs [when there were no free certs yet].12:48 AM · Feb 5, 2016·Twitter Web Client
