@fydel you could grab a letsencrypt cert for the hamsterpool and enforce https - want pointers at some point?

I haven't done https before but I will give it a try this weekend.

@fydel I'm happy to give you the TLS rundown if you'd like. :D It's fairly easy. (tm)

fairly easy to get wrong too

b or better on the ssllabs audit thingy is ok

and no sense to go in for stuff like HPKP without knowing what you are doing - very easy to paint oneself into a corner