I had been working on understanding and troubleshooting an OCSP implementation and learnt a few things and thought I could share them on the blog.
When moving into an agile / DevOps model of code production, one of the core concepts is building in enough monitoring and telemetry. To enable this, most programming languages come with bundled libraries for logging. There is log4J in Java and logging library in python. In this (short) post, I walk through a use case of how it helped.
DevOps is the latest buzzword but, it is also a philosophy that has a potential to change the way organizations build product and services. Being in a professional services role associated with CDN, I was far removed from the actual development teams and had lost touch with my coding background. Over the last 6-8 months, I have been working on to learn about the concepts of this new methodology and felt that there are may be people out there embarking on a similar journey. If you are one of them, hope my approach can give some ideas. Of course, I am still learning - so if you have any thoughts, please let me know!
One of the biggest challenges of migrating a website from HTTP to HTTPS is the issue of mixed-content warning. I had written on how content-security-policy (CSP) can help in this HTTPS migration process. However, one of the more fundamental problem is finding pages that have a mixed content issue.