Section Apache 2.1.1 recommends Rewrite instead of Redirect. Should be 301! (We correctly recommend 301 in the nginx section.)
+2014-02-11 19:41
+OpenVPN cipher string doesn't work with 2.3.2 according to: @bong0.
+tlc-cipher TLS-DHE-RSA-WITH-AES-256-GCM-SHA384:TLS-DHE-RSA-WITH-AES-256-CBC-SHA256:TLS-DHE-RSA-WITH-AES-128-GCM-SHA256:TLS-DHE-RSA-WITH-AES-128-CBC-SHA256:TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA:TLS-DHE-RSA-WITH-AES-256-CBC-SHA:TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA:TLS-DHE-RSA-WITH-AES-128-CBC-SHA:TLS-RSA-WITH-CAMELLIA-256-CBC-SHA:TLS-RSA-WITH-AES-256-CBC-SHA:TLS-RSA-WITH-CAMELLIA-128-CBC-SHA:TLS-RSA-WITH-AES-128-CBC-SHA
+http://twitter.com/bong0/status/433306823001526272
+http://twitter.com/bong0/status/433307537375387648
+http://nopaste.info/d194fdaa78.html
+
+
BIG TOPICS
==========
People with outdated browsers (winXP) etc can't see our webpage. --> make a landing page explaining
how to updated the browser :)
+Improve the wording on the cert.at Mailing list website so people don't get confused and know that they ended up on the correct site and list.
+
Formatting
==========
* Webservers:
Header Strict-Transport-Security "... includeSubDomains": we need to meed to mention that this can be a big pitfall.
Also do some more research on this!
- For example: http://tools.ietf.org/html/draft-ietf-websec-strict-transport-sec#section-6.1
+ For example: https://tools.ietf.org/html/draft-ietf-websec-strict-transport-sec#section-6.1
fix lighttpd HTTP redirection and env vars
lighthttpd: ssl.ec-curve = "secp384"
ssl.dh-file = "/etc/lighttpd/dhparams-group16.pem"