Archive for the SSL Category

Jul 19 2018

Certbot free SSL certs

For apache

sudo certbot –authenticator webroot –installer apache –webroot-path <path to served directory> -d <domain>

0 0,12 * * * /opt/certbot/bin/python -c ‘import random; import time; time.sleep(random.random() * 3600)’ && /usr/bin/certbot renew -q

just get a certificate with apache running

sudo certbot certonly --apache

just get a certificate (stop apache first)

sudo certbot certonly --standalone

just get a certificate on Slackware

sudo certbot certonly --apache --apache-server-root /etc/httpd --apache-vhost-root /etc/httpd/sites-enabled --apache-challenge-location /etc/httpd -d rotmanka.pl,www.rotmanka.pl

revoke a cetificate

sudo certbot revoke --cert-path /etc/letsencrypt/live/rotmanka.pl/fullchain.pem

Saving debug log to /var/log/letsencrypt/letsencrypt.log

Would you like to delete the certificate(s) you just revoked, along with all
earlier and later versions of the certificate?

(Y)es (recommended)/(N)o:

Permalink | Categories Linux, SSL on July 19, 2018 by Rafał Romanowski | No Comments
Tags:
Feb 20 2015

If your SSL certificate was received in DER format, here is the command to convert it to PEM:

openssl x509 -in signed_cert.der -inform DER -out server.crt

Permalink | Categories Linux, SSL on February 20, 2015 by Rafał Romanowski | No Comments
Tags:
Feb 10 2011

Certyfikaty SSL Self-signed

cd /etc/ssl/misc
Nowy CA: ./CA.sh -newca

Nowa “prosba”:  ./CA.sh -newreq

Podpisanie: ./CA.sh -sign

Zdejmowanie hasła: openssl rsa -in newkey.pem -out key.pem

Wpisy w httpd-ssl.conf

SSLCertificateFile /etc/ssl/certs/apache/cert.pem
SSLCertificateKeyFile /etc/ssl/certs/apache/key.pem
SSLCACertificateFile /etc/ssl/certs/apache/cacert.pem


Permalink | Categories Linux, SSL on February 10, 2011 by Rafał Romanowski | No Comments
Tags: