Enhance SSL security: Public Key Pinning (HPKP)
Wikipedia: HTTP Public Key Pinning (HPKP) is a trust on first use security mechanism which protects websites from impersonation using fraudulent certificates issued by rogue or compromised certificate authorities.
Firefox implemented support for Public Key Pinning some months ago, Chrome is supporting it even longer.
My Feature Request to cPanel: Please make it easy for End-Users to generate the PIN for a Public SSL Key.
Currently it is simple to generate new SSL keys. But it is difficult to generate the Base64-encoded PINs, required to enter in the htaccess file.
I know it's possible to generate the PINs by accessing the server with PuTTY via SSH and the run
But the most End-Users have no idea how to do that.
It would be great, if cPanel would simply show the PINs directly on the page with the SSL key details. The it could just be copied and used.
For more details please see also: HTTP Public-Key-Pinning explained