• Home
  • WordPress
  • web Hosting
    • Free hosting
    • Cheap Hosting
    • comparison cloud , vps, shared, wordpress
    • managed wordpress hosting
    • managed cloud hosting
  • page Speed
  • Deals
  • Services
  • About

RAaz Kumar .com

wordpress tutorials seo hosting etc


SSL faster reduce TLS hand shake improve https performance

SSL handshake time:

TTFB/latency/server response time.

TCP Connections ->keep alive

 

– DNS 126.09 ms

– Connect 10.97 ms

– SSL 466.75 ms  300ms,

– Send 0.04 ms

– Wait(TTFB)  1585.45 ms /200ms Google suggested up to500 no issue for dynamic sites like WordPress.

– Receive 0.05 ms

improve ssl handshake time

Competitor only 144ms

Fully loaded page time should be 2-3 seconds.

Page size 1-2MB.

Enable OCSP Online Certificate Status Protocol (OCSP) stapling.

eliminates the need for the client to contact the certificate authority every time, caches & stores on server for a time.

nearly 300ms to respond to a OCSP request

response on the server itself

“`

ssl_stapling on;

ssl_stapling_verify on;

ssl_trusted_certificate /path/to/full_chain.pem;

resolver 8.8.8.8 8.8.4.4 valid=300s;

resolver_timeout 5s;

“`

 

CIPHER SUITES:

Choosing a crypto cypher that is too weak can subject your site to a number of potential vulnerabilities. On the other hand, choosing a stronger cypher can add load if your site is already CPU bound.

 

Rsa keys are too old but popular 2048 bit key provides 112 bits of security and 3072 bits provides 128 bit security. While ecdsa 256 bit key provides 128 bit security its enough. If you need more security inrease key bit size adds latency.

 

 

ssl_prefer_server_ciphers on | off;

 

 

 

 

 

Specifies that server ciphers should be preferred over client ciphers when using the SSLv3 and TLS protocols.

 

Turnoff ssl session tickets:

 

Specifices cache with session tickets. Some security issues.

Using these cipher suites(set alogrithims->key exchange,encyption, data inegryty et you are you doing to help

HTTP Strict Transport Security (HSTS):

 

Avoid  http to https  time  insrucuts browser use https.

 

Browser directly makes connection through https, eliminates checking http.

 

 

Using latest TLS extension:

TSLS 1.2 supported by all browsers and increased performance and security.

 

TLS 1.3 supported by chrome, Firefox

 

It it in (28th)  draft status from 2014.

Beta versionimplted by openssl and supports by Apache, nginx.  2x performance. By cutting ssl handshake round trips from 4-to 2.

 

SSLV3 and TLSV1 have security vulnerabilities they are deprecated.

 

SSL Session caching: enable it store sessions to to avoid extra ssl handshake for know visits/users.

Valid for 1d to 1h.

Disable session tickets

Reduce ssl buffer size to minimize ttfb

Disable old SSL.protocols

 

Sample ssl configuration

Redirection settings

Port

Domainname

Root directory

 

SSLCertificateFile /etc/apache2/ssl/godaddy.crt

SSLCertificateKeyFile /etc/apache2/ssl/new.key

SSLCACertificateFile /etc/apache2/ssl/gd_bundle-g2-g1.crt

ssl_session_cache shared:le_nginx_SSL:1m;

ssl_session_timeout 1d;

ssl_session_tickets off;

ssl_protocols TLSv1.2 TLSv1.3;

ssl_prefer_server_ciphers on;

ssl_ciphers “EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH”;

ssl_ecdh_curve secp384r1;

 

ssl_stapling on;

ssl_stapling_verify on;

 

add_header Strict-Transport-Security “max-age=15768000; includeSubdomains; preload;”;

add_header Referrer-Policy “no-referrer, strict-origin-when-cross-origin”;

add_header X-Frame-Options SAMEORIGIN;

add_header X-Content-Type-Options nosniff;

add_header X-XSS-Protection “1; mode=block”;

Related topics:

  1. Top 10 tips to improve nginx server security
  2. improve mysql performance wordpress my.cnf file configuration
  3. what is vpn vs proxy vs tor, http vs https, http2, tcp vs udp, kali linux sql source code injection
  4. nginx conf explained best config file performance tuning tips nginx.conf location errors tutorial
  5. what is TTFB & how to Reduce it (server response time) Google pagespeed

tutorials

  • Vivek Bindra Videos Transcription (business strategy)
  • git commands
  • new relic php agent install in 3 steps
  • new relic mysql install integration - 2 ways fix problems
  • new relic installation linux (infrastructure agent , php, mysql , nginx)
  • xampp tutorials 2021 installation errors fix wordpress phpmyadmin mysql apache
  • Redis performance metrics & tuning for nginx apache ubuntu & debian
  • Devops course Syllabus topics PDF AWS, Azure, cisco, redhat
  • CCNA Syllabus pdf (CCNA / CCNP vs devops vs mcsa /MCSE)
  • how to create a website free of cost on google
  • what is vpn vs proxy vs tor, http vs https, http2, tcp vs udp, kali linux sql source code injection
  • nginx server tutorials (installation, configuration, performance tuning, security)
    • Top 10 tips to improve nginx server security
    • upgrade php fpm ubuntu nginx 7.4 to 8.2
    • install phpmyadmin ubuntu nginx 22.04
    • php fpm install ubuntu 20.04 nginx
    • nginx upstream response is buffered to a temporary file
    • php fpm ondemand vs dynamic vs Static (the dynamic pool problem)
    • Php fpm configuration for 1000 concurrent connections server busy max children reached
    • php fpm seems busy fixed warning and max children reached to handle max connections / requests
    • newrelic nginx integration process and errors fix and metrics
    • datadog nginx integration installation process
    • nginx rate limiting explained by location time specific url
    • SSL faster reduce TLS hand shake improve https performance
    • monitor nginx request with nginx status amplify datadog new relic
    • nginx installation on ubuntu 20.04 LTS
    • enable brotli compression nginx brotli vs gzip
    • nginx performance tuning
    • Letsencrypt SSL Installation on apache/Nginx ubuntu / debian wordpress
    • letsencrypt install configure on ubuntu / debian nginx
    • what is TTFB & how to Reduce it (server response time) Google pagespeed
    • php fpm restart nginx ubuntu enable status page, monitor etc
    • php fpm pool manager configuration settings based on server spike high cpu wordpress
    • nginx modules list (enable, disable, upgrade, install dynamic module)
    • nginx rewrite rules with examples 301 redirection
    • use nginx as reverse proxy and load balancer for apache wordpress
    • nginx conf explained best config file performance tuning tips nginx.conf location errors tutorial
    • nginx errors (504,502, 413, unable to start, syntax errors)
    • Pagespeed module install, configure, monitor, errors ft nginx &apache
    • Apache vs nginx (connection handling, modules, memory usage)
    • install LEMP Stack on 22.04 LTS Nginx MySQL PHP fpm #wordpress #digital ocean
    • nginx fastcgi cache wordpress how to configure
    • fix error 520 522 524 on cloudflare wordpress godaddy nginx etc
  • MySQL Tutorial (create,connect database, update tables, export etc) Documentation & TIPS
  • AUdio Editing Background Noise removal (Audacity, Adobe Premiere Addition, Camtasia Filmora Windows Obs)
  • Android Studio tutorials syllabus Topics Course details #AndroidApplicationDevelopment
  • [INTRO] Ethical hacking / cyber Security / Penetration testing Tutorial -{updates frequently}
  • redis install ubuntu 20.04 with wordpress php redis mysql configuration
  • ubuntu tutorials installation download issues etc
  • Php tutorials
  • HTML & CSS Tutorials
  • Core Java Tutorial Free online
  • Linux sysadmin tutorials linux system administrator
  • apache server tutorial (install,config, performance tuning, security, error handling)

 

 

wordpress Pagespeed optimization

Digitalocean free $100 Credit

Cloudways Review pricing promo codes

Siteground cpu limits Pricing

Shared Hosting

Managed wordpress Hosting

Managed Hosting Cloud server

VPS Hosting

Cloud Hosting – Unmanaged

Google cloud Pricing

Aws Pricing

Azure pricing

nginx server tutorials

apache server tutorials

linux sysadmin tutorials

mysql Commands list pdf

LEMP Install Ubuntu

Mysql Performance Tuning

Nginx Performance tuning

Linux Performance tuning

Php -fpm performance tuning

Redis Performance tuning

linux server security

nginx security best practices

wordpress security plugins

 

 

wordpress

 

Top 5  WP Google Analytics Plugins

WP Backup Plugins

Wp Comment Plugins

Top wordpress Security Plugins

WP Seo Plugins

WP Caching Plugins

Best Adsense Plugins for WordPress

Wp social Sharing Plugins

autoshare social media plugins

WP speed Optimization Plugins

Speedup WordPress google Score

More Wp tuts

Server Admin Cloud

 

Installing Nginx LEMP On ubuntu

Installing apache Lamp ubuntu

nginx fastcgi cache enable

php – fpm install  & Configuration

Opcache install & Configure

php -fpm pool manager explained

Mysql Install & Configuration

Redis Object cache install & configure

 

Nginx as Reverse Proxy and Load balancer

Load Balance / auto scaling in google cloud

Linux Commands PDF

Mysql Commands Pdf

Letsencrypt tutorial

mysqldump export & import 

Pagespeed Module install & configure

nginx.conf best file

mysql.conf best file

upgrade ubuntu

© 2023 - All Rights Reserved Disclaimer & Privacy Policy