I can configure your Apache, nginx, or IIS* Web server for SSL Forward Secrecy and ensure that your site's SSL configuration is PCI-compliant and scores an A on Qualys SSL Labs' SSL Test (ssllabs.com).
If you have never given any thought to your SSL configuration, it is probably not secure against the latest exploits affecting some versions of SSL. The default settings in most servers haven't been updated in years and are no longer ideal.
If you are trying to protect your visitors from eavesdropping by governments, you need to use the latest, most secure ciphers. Some ciphers commonly used by SSL have recently been found to have vulnerabilities that can be practically exploited, enabling a skilled attacker to decrypt and eavesdrop on your communications. Enabling Forward Secrecy adds an extra layer of protection, ensuring every SSL session uses its own cryptographic key -- without FS, an attacker only needs to crack or steal a single key to decrypt any SSL session; past, present, or future.
I can quickly configure your Web server according to current best practices, to ensure that the most secure ciphers are used to encrypt your customers' data, and defend against known exploits. I can make tweaks that will speed up SSL so your server can handle more connections. Your site will score an A on the Qualys SSL Test, and you'll be able to tell your customers that you are doing everything possible to protect their data.
(The SSL Labs score depicted is the best score currently possible while maintaining compatibility with all current major browsers except IE6. IE6 compatibility is possible at the cost of a tiny measure of additional security.)
Get more with Offer Add-ons
I can configure SSL in IIS as described (*additional charge)
Additional 1 working day
+$10
I can install your SSL certificate
Additional 1 working day
+$29
What the Freelancer needs to start the work
You need an nginx, Apache, or IIS web server on a dedicated server or VPS that you have root/administrator access to (i.e. you can change the web server configuration). All system updates should be installed and SSL should be set up and working (if it's not, I can set it up for an additional $29 plus the cost of the certificate).
You will need to give me administrator access to the server:
- For a Linux/FreeBSD/other Unix-like server, I'll need SSH access. You can give me a username and password, or you can authorize my SSH public key (I'll help you do this).
- For a Windows server, I need Remote Desktop access, and a username and password.
If you can't provide me with remote access to the server, you might be able to send me the Web server's configuration file, and I'll make the necessary changes and send it back.
Reviews (3)
Josef W.
London, United Kingdom
Highly recommended, worked efficiently and effectively.
Richard P.
Derby, United Kingdom
Tony completed the task in a timely manner. He was helpful and informative throughout. I wholeheartedly recommend his work.
Tony G.
Richard was easy to work with, communicative, and prompt. Look forward to next time.
Ricky B.
Reading, United Kingdom
One of the best i have hired on PPH. Will use again.
Tony G.
Thanks Ricky, you made it easy for me to work with you.
445647366487243302
We collect cookies to enable the proper functioning and security of our website, and to enhance your experience. By clicking on 'Accept All Cookies', you consent to the use of these cookies. You can change your 'Cookies Settings' at any time. For more information, please read ourCookie Policy
