From 26th March, I'll be starting a new job, still at the same company, however, I'll no longer be working shifts (moving to a 9-5:30 Monday to Friday), so overnight work will need to be carefully scheduled in with me if required.
The new job is very specific to the work I'm offering here as well, as I'm now a Linux Systems Engineer Level 3
Congratulations Matt!From 26th March, I'll be starting a new job, still at the same company, however, I'll no longer be working shifts (moving to a 9-5:30 Monday to Friday), so overnight work will need to be carefully scheduled in with me if required.
The new job is very specific to the work I'm offering here as well, as I'm now a Linux Systems Engineer Level 3
On the 22nd April 2018, the current SSL certificate on https://mattwservices.co.uk will expire. I've got a new certificate already configured and ready to go.
However, due to an oversite on my part, I have Public-Key-Pins enabled, which sets a 2592000 second (1 month) header in the browser. If I replace the SSL certificate while the Public-Key-Pins header is still set, you will get a security warning while attempting to access the site.
You can manually clear the header in your browser.
Chrome (Desktop and Mobile Version):
https://linux-audit.com/delete-a-hsts-key-pin-in-chrome/
Firefox:
https://linux-audit.com/deleting-outdated-hpkp-key-pins-in-firefox/
Safari and Edge, you should just need to clear the cache for the site.
Chrome is currently planning on depreciating PKP in May 2018:
https://groups.google.com/a/chromium.org/forum/#!msg/blink-dev/he9tr7p3rZ8/eNMwKPmUBAAJ
https://scotthelme.co.uk/im-giving-up-on-hpkp/
However, as the header has been previously set, until this is either removed from your browser manually, or the header value expires and is removed from the browser when it attempts to fetch it again (and find's it's no longer there), there will be errors accessing the site from the 22nd April. I'll delay swapping the certificate until the very last minute.
This won't affect the billing subdomain, as the certificate doesn't expire until August 2019, and I only had a 900 seconds max-age value set on there, so you will still be able to access the billing part of the site.
Apologies in advance for this, and hopefully it won't cause any issues after the 22nd once the certificate is replaced if you have cleared the browser cache per the previosuly mentioned methods.
Regards,
Matt
@MattW is BRILLIANT!
I've been working closely with him for about a year and a half. He's saved my ass a TON of times and taken a HUGE site conversion and saved me from multiple situations that would have otherwise been heart-attack-inducing nightmares.
Not only is he one of the smartest / most-skilled admin's out there, he's also genuinely a really great guy.
This is one of those rare situations that I'm almost reluctant to recommend him just so he doesn't get too busy... but I like him so much as a person that I can't help but tell everyone how amazing he is at what he does!
We use essential cookies to make this site work, and optional cookies to enhance your experience.