In case of SSL for a web-site, how do you test if the configuration is ready for a production use?
I’ve implemented the certificate for my production on https://LuckStock.com and thinking I did it too early.
I’m still receiving complaints from the customers that they aren’t able to land to my web-site due to some certification issues.
Last one was from Windows 7, latest Chrome with the error message: ERR_CERT_AUTHORITY_INVALID
I’ve tested it as much as I could through different OS/browsers before going to production, but seems there are some cases left outside with very specific configurations.
To list the questions I have:
- Do we still have a beta-program for Letsencrypt to include information about the certificate issued for my domain and should I apply there?
- I’m using latest letsencrypt X3 (v0.5) to issue certificates for my web-sites.
- I’m using stapling and below is the configuration from my production NGINX:
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
resolver 126.96.36.199 188.8.131.52 valid=86400s;
add_header Strict-Transport-Security max-age=15768000;
Could you please check my configuration/certificate if it’s reliable enough to run on production?