Feburary 25th Go 1.12 got released with opt-in support for TLS 1.3. With the 0.11.5 release of caddy which builds on Go 1.12, caddy finally supports TLS 1.3. This also means that this site and (most of) the services I run, now support TLS 1.3. This site now supports TLS1.3! Yay! TLS 1.3 is the latest version of the TLS protocol, with many improvements. These improvements include: Mandatory perfect forward secrecy Weak hash functions and ciphers got removed Dropped support for many insecure or obsolete features including compression, renegotiation, non-AEAD ciphers, non-PFS key exchange, custom DHE groups and more And more (full list) Not only is TLS 1....

Intro WireGuard is an extremely simple yet fast and modern VPN that utilizes state-of-the-art cryptography. It aims to be faster, simpler, leaner, and more useful than IPSec, while avoiding the massive headache. It intends to be considerably more performant than OpenVPN. WireGuard is designed as a general purpose VPN for running on embedded interfaces and super computers alike, fit for many different circumstances. Initially released for the Linux kernel, it is now cross-platform and widely deployable....