Ensure secured connections with HSTS (HTTP Strict Transport Security)

September 8, 2017Web best PracticesBoris Schapira

Our regular readers already know that HTTPS is now a requirement for any websites. The urge to get rid of unsecured navigation has never been stronger: each release of Google Chrome or Mozilla Firefox comes with a new warning sign for users sharing private data. Soon, all forms will be concerned.

But offering an HTTPS version of your website is not enough to automatically redirect all your HTTP traffic to this secured version. Continue reading Ensure secured connections with HSTS (HTTP Strict Transport Security) →

Hiring, events and more: latest news you shouldn’t miss about Dareboost

September 7, 2017AboutPhilippe Guilbert

A lot of news to announce about Dareboost! First of all, we are very glad to see our team reinforced with the arrival of our Customer Success Manager. That said, let’s have a look back to a few announcements you may have missed this summer. And then talk about some nice events Dareboost will be part of in the weeks to come.

Continue reading Hiring, events and more: latest news you shouldn’t miss about Dareboost →

Boris Schapira, our new Customer Success Manager!

September 7, 2017AboutPhilippe Guilbert

One more proof that speed is the core of Dareboost values: Boris Schapira has joined us for only a few days and he is already on our blog for an interview! Let’s (re)discover this expert whose main mission will be to help Dareboost customers achieve their web performance goals. Continue reading Boris Schapira, our new Customer Success Manager! →

Mastering your Website Performance: 9 advanced use cases for Dareboost

August 3, 2017AboutPhilippe Guilbert

Dareboost has just released a detailed user manual about our web performance testing and monitoring service. Here is a little appetizer: not less than 9 powerful use cases for Dareboost performance tools. Continue reading Mastering your Website Performance: 9 advanced use cases for Dareboost →

Website Performance Monitoring: 5 reasons why you should use synthetic monitoring

July 4, 2017Performance analyticsPhilippe Guilbert

Regarding website monitoring, 2 approaches coexist – without competing: Real User Monitoring, based on real users browsing, and Synthetic Monitoring that emulates users visits. Let’s focus on the specific benefits brought by this second approach. Continue reading Website Performance Monitoring: 5 reasons why you should use synthetic monitoring →

Secure your cookies to the next level with SameSite attribute

June 22, 2017Web best PracticesDamien Jubeau

After reading our last article about how to secure your cookies, you may (should?) already be using Secure and HttpOnly flags. As a reminder, ‘Secure’ allows to prevent a cookie to be sent on a non-secure web page, whereas ‘HttpOnly’ prevents any client-side usage of a given cookie.
It is now time to take your website security to the next level with one more attribute for your cookies! Let’s talk about SameSite instruction, allowing to prevent Cross-Site Request Forgery (CSRF) attacks and Cross-Site Script Inclusion (XSSI). Continue reading Secure your cookies to the next level with SameSite attribute →

Website Speed Test from São Paulo (Brazil) and Seattle (USA)

March 24, 2017Service UpdatesDamien Jubeau

We are very glad to inform you that we now offer two more locations for testing your website speed. We now have 3 test locations in the Americas, with São Paulo and Seattle joining Washington DC. Continue reading Website Speed Test from São Paulo (Brazil) and Seattle (USA) →

Performance and security of target=_blank links with rel=noopener

March 21, 2017Web best PracticesDamien Jubeau

About one year ago, we were announcing an update of the quality checkpoints of our website analysis service. This update was including a new best practice related to hypertext links opening in a new window or tab by using target="_blank" attribute.
Joining Google Chrome, the latest Firefox version now supports the rel="noopener" attribute, which was one of our advised solutions. The right time for us to have a look back on this recommendation we have brought not only for better security but also for web performance. Continue reading Performance and security of target=_blank links with rel=noopener →

Web Performance & Security: how to master Third Party Content impacts

March 16, 2017Web best PracticesDamien Jubeau

Third-party content are parasites. Friendly ones, with – most of the time – good intentions. But parasites anyway. Let’s discover some useful tips and techniques to deal with Third Party Content and their impacts regarding your website performance and security.

Continue reading Web Performance & Security: how to master Third Party Content impacts →

Website Speed: 49 Luxury Brands Tested in China

February 28, 2017Performance analyticsDamien Jubeau

The Chinese web is a highly coveted market for all brands of luxury goods from around the world. But it is also a difficult sector for investments – with its limited access conditions as well as its famous Great Firewall. How do these brands manage to deal with these technical handicaps? Using its Chinese probes, Dareboost tested the web performance of 49 of these prestigious brands. Continue reading Website Speed: 49 Luxury Brands Tested in China →

Website Speed: test it like your users browse it

February 13, 2017Web best PracticesPhilippe Guilbert

Your website seems fast enough to you? Are sure that your visitors share the same opinion? Through that question, we intend to talk about the huge differences of web connections among your users… and about the effects about how they will experience your website performance. Continue reading Website Speed: test it like your users browse it →

Website analysis: new checkpoints on Dareboost

January 19, 2017Service UpdatesPhilippe Guilbert

UPDATE: New checkpoints described in this post are now available on dareboost.com!

On February 2nd, checkpoints applied to our website quality test tool will be updated. New checkpoints, impacts on the Dareboost score… Here is a detailed review of this update to come, so that you could anticipate it and avoid any drop of your own score! Continue reading Website analysis: new checkpoints on Dareboost →

Website speed test & monitoring: Dareboost 2016 retrospective

January 10, 2017AboutPhilippe Guilbert

Hello 2017, goodbye 2016! The Dareboost team wishes you all the best for this new year: success in your business and projects with, naturally, highest web performance for your pages! More than ever, Dareboost is the ultimate tool to help you improving your websites speed and quality. Here is a 2016 retrospective of the major evolutions concerning our service: you may enjoy (re)discovering some of them! Continue reading Website speed test & monitoring: Dareboost 2016 retrospective →

WordPress: which is the fastest theme among ThemeForest best sellers?

December 15, 2016Performance analyticsDamien Jubeau

They have been sold up to 250,000 times on the ThemeForest marketplace…But how fast are those famous WordPress themes? Dareboost have been testing 8 of these best sellers themes by monitoring their demo pages for several months. Here are the results. Continue reading WordPress: which is the fastest theme among ThemeForest best sellers? →

Web Performance and User Journey Monitoring with Dareboost

December 2, 2016Service UpdatesDamien Jubeau

It’s been months we have been working on it and testing it with a few renowned customers, and there we are now… Proud to announce the release of a brand-new feature on Dareboost: Synthetic User Journey Monitoring! Thanks to this new service, you will be able to analyze and monitor the web performance of a whole user journey. Let’s discover this new option. Continue reading Web Performance and User Journey Monitoring with Dareboost →

On the way to HTTP/2: what to expect for front-end development?

November 15, 2016Web best PracticesPhilippe Guilbert

We have announced it a couple months ago: our web performance testing tool now fully supports HTTP/2 and our best practices repository has been updated to handle the particularities of this new protocol. Now, let’s go back to the reasons of HTTP/2 emergence and talk about the major changes this protocol brings, and these old HTTP/1 best practices that we will have to give up! Continue reading On the way to HTTP/2: what to expect for front-end development? →

DNS Mapping: one more feature for website speed tests with Dareboost

October 20, 2016Service UpdatesPhilippe Guilbert

One more new feature has just been added to the advanced settings for our website speed tests, as for our monitoring and comparison features: the DNS Mapping. Thanks to this new option, you can now enforce one/many DNS resolutions. Let’s see why and how to use such a feature through a few examples. Continue reading DNS Mapping: one more feature for website speed tests with Dareboost →

New on Dareboost: Custom events and CSV export for your monitoring data

October 10, 2016Service UpdatesDamien Jubeau

Two very awaited features are now available for our customers within their monitoring dashboard. The ability to create and to manage custom event, and a CSV export feature for the monitoring data. Continue reading New on Dareboost: Custom events and CSV export for your monitoring data →

Why you should avoid using document.write, specifically for scripts injection

September 29, 2016Web best PracticesDamien Jubeau

Web performance testing tools such as Google Page Speed or Dareboost have been advising this for a while: injecting a script with document.write has a significant impact on website loading time. Let’s talk about this topic one more time, as the next Chrome update (version 54) won’t allow such scripts injections any longer. What kind of issues may you experience? What are the alternatives?

Continue reading Why you should avoid using document.write, specifically for scripts injection →

Major update announcement: HTTP/2 speed test support and more

September 2, 2016Service UpdatesPhilippe Guilbert

Our team is glad to announce today our next major upgrade, ~~planned~~ deployed on 19th September, with a brand-new test probe technology. We’re detailing within this post all the evolutions and improvements. This is one of our biggest update, with amazing news such as HTTP/2 support and much more to discover…

Continue reading Major update announcement: HTTP/2 speed test support and more →

How to implement Content Security Policy?

August 19, 2016Web best PracticesDamien Jubeau

Now that we have seen how CSP can be useful in preventing injections of content within your web pages, let’s have a look on some technical elements about CSP implementation, and a few ideas about the methodology to adopt. Continue reading How to implement Content Security Policy? →

Content Security Policy to secure your website (and more)

August 19, 2016Web best PracticesDamien Jubeau

Thanks to Content Security Policy, you can protect your website from numerous vulnerabilities concerning content injection. Let’s see why and how to use that simple but powerful HTTP header, now widely supported by web browsers.
Continue reading Content Security Policy to secure your website (and more) →

Website analysis: new checkpoints in our test reports

June 7, 2016Service UpdatesPhilippe Guilbert

UPDATE: New checkpoints described in this post are now available on dareboost.com!

Save this date: from June 23rd, new checkpoints will enrich our website quality test. This post aims to introduce you the new checkpoints before being live, so you’ll have time to correct your website (if needed) before our update… Avoiding, by this way, any drop of your DareBoost score!

Continue reading Website analysis: new checkpoints in our test reports →

Review of our last updates: new features for monitoring, comparison and API

June 6, 2016Service UpdatesPhilippe Guilbert

Some of the most regular users of DareBoost may already have noticed it: several improvements have been added to our website for the past weeks. It is time for us to talk a little more about these new features. We hope you will discover – and enjoy – some of them!

Continue reading Review of our last updates: new features for monitoring, comparison and API →

SPOF: what if your website gets down because of third-party content?

June 3, 2016Web best PracticesDamien Jubeau

You may have already heard about Single Points Of Failure (SPOF), generally dealing with network matters. Did you know that SPOF is also an issue at front-end dev stage? Could you imagine your website to be reliant on Twitter or Facebook’s servers?

Continue reading SPOF: what if your website gets down because of third-party content? →