In the post-Snowden threat environment, we understand that our clients' data is under threat from many different adversaries. Governments, cyber-criminals and foreign hackers are all trying to root your servers and own your websites. In this session, I will be covering the basics of securing servers on which websites are hosted, and why we need to encrypt all the things by default. I will present a variety of tips, tricks and configurations that help to protect both your websites and your visitors.