By default, every Google device uses the following configured DNS-servers: 220.127.116.11 18.104.22.168 But I don’t want my guests, who can use my WiFi, to let Google phone home and give information about who visits my network. I use iptables to block those DNS-requests. The firewall rejects all the DNS-requests that would be sent to Google. […]
I normally use Certbot to issue and install the free Let’s Encrypt certificates. But I haven’t found a, or there is no, convenient way to issue ECC-certificates with Certbot. For that reason I switched from Certbot to acme.sh. With acme.sh I can generate ECC certificates, without having to generate all kinds of extra files before […]
The Mozilla Wiki provides a page dedicated about Server Side TLS on which it maintains the best TLS configurations for your webserver.