Y
Hacker News
new
|
ask
|
show
|
jobs
by
gellerb
4435 days ago
Yeah. I noticed that paypal.com has a max-age of 4 hours.
1 comments
rhoml
4435 days ago
Maybe the first step to avoid issues is to enforce SSL which is easy on any webserver before going HSTS.
link
d0ugie
4435 days ago
Is there any downside, when using SSL, in enabling perfect forward secrecy?
link
JshWright
4435 days ago
Make sure you're using an SSL library that support ECDHE cipher suites... the non EC suites are very slow.
link