[Ach] few suggestions: HSTS, code / config snippets

Martin Rublik martin.rublik at gmail.com
Fri Jan 24 17:46:37 CET 2014

On 12. 1. 2014 19:19, L. Aaron Kaplan wrote:
> On Jan 12, 2014, at 7:17 PM, Aaron Zauner <azet at azet.org> wrote:
>> Hi Martin,
>> Yes please do so. HSTS is missing and quite important.
> +1 (the other Aaron)

Sorry guys it's been a while but I was kind of busy these days. I skimmed
through the doc again and I guess the HSTS would fit best in the Theory section.

First I wanted to prepare a little intro for SSL/TLS/HSTS but I'm a little
confused. If I go through "3.2 Cipher suites" this is mostly SSL stuff so I
guess renaming and extending this part would be the way to go.

Moreover, as the document mentions other network security protocols IPSec,
PGP, SSH, etc. would not it be better to move the theory parts into theory
section? (especially 2.4.1 IPSec does not really fit into context, it does not
really describe how to configure something).

In the practical part it would be nice to point out which network security
protocol is used (though it is implicit some might find this information
helpful). This way we could link better the theoretical and practical section.

Just mine 2 cents.


More information about the Ach mailing list