Hello all,
After doing several ssllabs test and security header on many websites to get A+ score and ensure the sites are hardened, i thought highlight the same here for these forums.
Site admin(s) should consider hardening the site a bit more by visiting the
https://securityheaders.com
Also, I know that the forums are CDN using CloudFlare, but still worth tightening the back end server using
https://www.ssllabs.com/ssltest as well getting C.F. securely setup for the site.
Also worth looking at
https://mozilla.github.io/server-sid...fig-generator/ to help getting the vhost configuration setup with all the above steps automatically generated for you.
__________________