Https certbot
From Anarchaserver
Set up a https certificate
Following the advices from https://certbot.eff.org
Install certbot and the certificates
add jessie-backports to the sourcelist :
sudo nano /etc/apt/sources.list
add the line :
deb http://ftp.debian.org/debian jessie-backports main
save and :
apt-get update
now we can install the certificates for the main domain and a subdomain using :
certbot certonly --webroot -w /var/www/ -d anarchaserver.org certbot certonly --webroot -w /var/www/zoiahorn/ -d zoiahorn.anarchaserver.org/
Renew automatically
the command to renew all the certificates is :
certbot renew
this command can be added to crontab or run by systemd, the certificates are valid for 3 months so the check can be done once a week or once a day, see
crontab
for systemd integration, see https://forum.yunohost.org/t/how-to-install-let-s-encrypt-certificates/1075/83
Check the certificates
test on https://www.ssllabs.com/ssltest/
references
- full documentation https://certbot.eff.org/docs/using.html
- https://letsencrypt.org/
