Puppy Linux Discussion Forum Forum Index Puppy Linux Discussion Forum
Puppy HOME page : puppylinux.com
"THE" alternative forum : puppylinux.info
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 

The time now is Tue 19 Jun 2018, 02:15
All times are UTC - 4
 Forum index » Off-Topic Area » Security
Certbot
Post new topic   Reply to topic View previous topic :: View next topic
Page 1 of 1 [3 Posts]  
Author Message
labbe5

Joined: 13 Nov 2013
Posts: 1189
Location: Canada

PostPosted: Tue 12 Jun 2018, 08:43    Post subject:  Certbot
Subject description: how to install Let's Encrypt SSL Certificates
 

https://linoxide.com/linux-how-to/install-letsencrypt-ubuntu/

Certbot is a user-friendly automatic client that fetches and deploys SSL/TLS certificates for your web server. It is an EFF's tool which is used to obtain certs from Let's Encrypt and auto-enable HTTPS on your server. In short, it acts as an official" Let’s Encrypt client" or “the Let’s Encrypt Python client.” It utilizes the Automated Certificate Management Environment (ACME) to automatically deploy free SSL certificates that are trusted by the majority of the browsers. Hence, it works for any other CAs which supports ACME protocol.

Certbot is available in Ubuntu repositories.
Back to top
View user's profile Send private message 
sc0ttman


Joined: 16 Sep 2009
Posts: 2577
Location: UK

PostPosted: Wed 13 Jun 2018, 03:52    Post subject:  

I just used this to install SSL certs on a website i'm messing around with...

I can confirm Certbot was super super easy, and worked first time (on an Ubuntu 16.04 server).

It took about 3 mins to get it installed, run it, answer a couple of questions in the terminal, and boom, I had the site working over https.

I had previously tried acme.sh, which ran into weird errors and did not work.

_________________
Akita Linux, VLC-GTK, Pup Search, Pup File Search
Back to top
View user's profile Send private message 
rufwoof

Joined: 24 Feb 2014
Posts: 2365

PostPosted: Wed 13 Jun 2018, 16:46    Post subject:  

I use the https certification method as outlined in (part of) this web page ... http://thecyberrecce.net/2017/01/15/secure-webservers-with-openbsd-6-0-setting-up-httpd-mariadb-and-php/
You do have to add a exception when you first visit, but if added 'permanently' viewing is direct thereafter.

I use ddnsfree for dynamic dns. Basically install ddclient, configure it to use the ddnsfree service (that's free) and your fixed allocated domain name follows your IP (if your IP changes, the domain name still points to that).

The way we have our home network setup is for main ISP Virgin Hub/router to have http and https ports forwarded to my PC (OpenBSD desktop) - using that dynamic dns setup. Other PC's also connect off that router i.e. easily replaced/reinstalled OS's - should the server (or any of the PC's) get hacked. For data (less easily replaceable) they sit behind a second router (physical LAN isolation) on a old single core Celeron that we reverse ssh tunnel through and run sshfs (so displayable as a rox or whatever folder view). The main TV acts as that data servers 'monitor' and we have a wireless keyboard with integral roller ball mouse for running films/music off the server.
Back to top
View user's profile Send private message 
Display posts from previous:   Sort by:   
Page 1 of 1 [3 Posts]  
Post new topic   Reply to topic View previous topic :: View next topic
 Forum index » Off-Topic Area » Security
Jump to:  

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum


Powered by phpBB © 2001, 2005 phpBB Group
[ Time: 0.0350s ][ Queries: 13 (0.0105s) ][ GZIP on ]