Taking My Security Grade From D to A
Backstory
For my website, security has always been a second-class citizen I’ve never treated it fairly outside of the basic practices of an SSL certificate and patching of the host and any plugins I might be using. I had the opportunity to join Scott Hanselman for a small group session hosted by my company and one of the things he talked about was providing server-side security and sound of mind to users. He asked the audience for someone’s website address to show security vulnerabilities so I was quick to volunteer mine I assume my website was ok I knew that I was running a Hugo static hosted website on Netlify so I wasn’t truly concerned. He pulled up the website securityheaders.com and scanned gogorichie.com needless to say I was surprised my site ranked in as a D on a grading scale of A+ to R.