Re: [OT] SSL testing

> > On windows systems there is a simple powershell script that you run which > alters the registry and disables to fallback to older algorithms that have > exploits. It does depend on the OS level though as to how much you need to > do. I attached the powershell script I used to disable a older

Re: SSL Certs

Yes I wondered about that one - just seemed over the top. Initial page doesn't need SSL so might look at DNS redirect from .com.au to .com. Regards Greg Dr Greg Low SQL Down Under +61 419201410 1300SQLSQL (1300775775) On 3 Nov 2015, at 6:58 AM, Paul Glavich

RE: SSL Certs

Hey Greg, Not sure on the .com.au and .com SSL certs as I have always grabbed a cert for one or the other. You could look at something like this https://www.digicert.com/ev-multi-domain-ssl.htm which is a multi-domain cert but even then I am not sure whether you could do .com and .com.au. You

RE: SSL Certs

Actually, maybe this would suit you better https://www.digicert.com/unified-communications-ssl-tls.htm - Glav From: ozdotnet-boun...@ozdotnet.com [mailto:ozdotnet-boun...@ozdotnet.com] On Behalf Of Greg Low (??) Sent: Monday, 2 November 2015 9:08 PM To: ozDotNet

RE: [OT] SSL testing

You generally should fix these as it means your system is open to information leakage or inspection from malicious people. Depending on the site and what it hosts, this may not be a big issue but the tools to exploit these holes get more common as time goes on. To fix the certificate

RE: [OT] SSL testing

A web search for the string ‘disableSSLv3.ps1’ should give you a TechNet description (which might have been the source?) and a few other links. _ Ian Thomas Albert Park, Victoria From: ozdotnet-boun...@ozdotnet.com [mailto:ozdotnet-boun...@ozdotnet.com] On Behalf Of Paul

RE: SSL Certs

I suppose a more basic question is: What’s the cleanest way in an Azure website MVC app to route all requests for abcdef.com.au to abcdef.com ? Regards, Greg Dr Greg Low 1300SQLSQL (1300 775 775) office | +61 419201410 mobile│ +61 3 8676 4913 fax SQL Down Under | Web:

SSL Certs

Hi Guys, If using two domains like: abcdef.com and abcdef.com.au (and obviously the site also has the www. versions of those too). For SSL on Azure websites, thoughts on whether we should do two certs, or just do that on one of them and then do some sort of redirect for the other one? (It’s

RE: [OT] Office 365

Of course. But the “who uses SharePoint?” question kinda implies that SharePoint’s been superseded in all areas that it does (document storage, workflow, calendaring, collaboration etc.). So, I’m not asking for a ERP system, or a CRM or something that people might have shoe-horned into

RE: Sql Server Patch Scripts

Oops –I replied to the wrong email ☺ From: ozdotnet-boun...@ozdotnet.com [mailto:ozdotnet-boun...@ozdotnet.com] On Behalf Of Ken Schaefer Sent: Tuesday, 3 November 2015 10:42 AM To: ozDotNet Subject: RE: Sql Server Patch Scripts The other option might be to keep the

RE: [OT] Office 365

There really is quite a shift going on. For years, every time we asked for enhancements to the portals in SQL Server Reporting Services, etc. the response was that “we already have a portal business and it’s called SharePoint”. Now all the SQL Server directions are away from SharePoint, back

RE: Sql Server Patch Scripts

The other option might be to keep the Billion as a mere modem+NAT+router, then stick something behind that to handle your internal LAN and WiFi etc. I do that with a DLink 2890AL acting solely as a moden+NAT (turned off WiFi, single LAN uplink). I then have a Cisco SG-300 L3 switch (does

RE: Sql Server Patch Scripts

That’s so funny Ken. I was just reading that email and thinking “I know that threads drift but I hadn’t realised that one had drifted that far”. It still seemed plausible ☺ Regards, Greg Dr Greg Low 1300SQLSQL (1300 775 775) office | +61 419201410 mobile│ +61 3 8676 4913 fax SQL Down Under |

Re: [OT] SSL testing

For those interested I contacted Troy Hunt who had this to say *"An F grade is unacceptably bad, definitely something he needs to get sorted. Hold the web developer / company accountable for that."* He also sent a link to an article of his which is quite interesting

Re: [OT] SSL testing

> > *"An F grade is unacceptably bad, definitely something he needs to get > sorted. Hold the web developer / company accountable for that."* > I could barely sleep last night knowing that I'd flunked with an F. The trouble is, I don't know who to blame (I am the *developer* and the *company*!!).

Re: SSL Certs

Personally, I'd pick the domain name you want people to use and get SSL for that. Then the other domain name is just to catch people who went to that one instead and route all your traffic to the main one. If you have just two domain names then I can understand the questionmark over how to use

Re: SSL Certs

+1 to Stephen's advice. I also wouldn't do the routing as a function of the MVC app. Use IIS Rewrite module and just make it part of the config (you can put the rules in your web.config so they deploy with your app). IIS Rewrite module is amazeballs. On Tue, 3 Nov 2015 at 14:23 Stephen Price

Re: SSL Certs

Can't this redirect just be done at the hoster and point to the same IP before it even gets to IIS? On Tuesday, 3 November 2015, David Connors wrote: > +1 to Stephen's advice. > > I also wouldn't do the routing as a function of the MVC app. Use IIS > Rewrite module and just

Re: SSL Certs

On Tue, 3 Nov 2015 at 14:30 Tom Rutter wrote: > Can't this redirect just be done at the hoster and point to the same IP > before it even gets to IIS? The request still needs to hit a web server somewhere - might as well be one you control. David. -- David Connors

RE: SSL Certs

Even once it hits the IP, it’s got to provide the host header to map to the appropriate web site. Regards, Greg Dr Greg Low 1300SQLSQL (1300 775 775) office | +61 419201410 mobile│ +61 3 8676 4913 fax SQL Down Under | Web: www.sqldownunder.com From:

Re: [OT] Office 365

I with Ken on this - if the bell is starting to toll for Sharepoint, what alternatives are being used? I've never liked Sharepoint, it always seemed to me to be an ugly, bloated, cumbersome thing to use, so I for one won't weep if it's nearing the end of its life, but there must be some