SecuringOpenSSL
3rd November 2016 at 10:58am
https://weakdh.org/sysadmin.html
https://www.ssllabs.com/ssltest/analyze.html?d=nicolaw.uk
https://sethvargo.com/getting-an-a-plus-on-qualys-ssl-labs-tester/
http://serverfault.com/questions/693241/how-to-fix-logjam-vulnerability-in-apache-httpd
https://o-o-s.de/debian-wheezy-apache-logjam/10492
https://httpd.apache.org/docs/current/ssl/ssl_faq.html
https://raymii.org/s/tutorials/Strong_SSL_Security_On_Apache2.html
https://www.digicert.com/ssl-support/ssl-enabling-perfect-forward-secrecy.htm#apache_forward_secrecy
https://www.ssllabs.com/ssltest/analyze.html?d=nicolaw.uk
https://cipherli.st
https://raymii.org/s/tutorials/Strong_SSL_Security_On_Apache2.html
https://wiki.mozilla.org/SecurityEngineering/Public_Key_Pinning
https://www.ssllabs.com/projects/documentation/index.html
https://hstspreload.appspot.com
http://en.wikipedia.org/wiki/Moxie_Marlinspike#Notable_research
http://en.wikipedia.org/wiki/HTTP_Strict_Transport_Security