Qualys – https://www.ssllabs.com/ssltest High-Tech Bridge – https://www.htbridge.com/ssl Comodo – https://sslanalyzer.comodoca.com SSL Checker – https://www.sslchecker.com/sslchecker
Tag:ssl
update: keeping your let’s encrypt certs up-to-date
Last year I posted a simple script for keeping your Let’s Encrypt {{SSL}} certificates current. In conjunction with my last post sharing the “best” SSL configs you can use with {{Apache}} on {{CentOS}}, here is the current state of the cron’d renewal script I use. systemctl stop httpd.service systemctl stop postfix ~/letsencrypt/letsencrypt-auto -t -n –agree-tos –keep …
Continue reading update: keeping your let’s encrypt certs up-to-date
ssl configuration for apache 2.4 on centos 7 with let’s encrypt
In follow-up to previous posts I’ve had about SSL (specifically with Let’s Encrypt), here is the set of {{SSL}} configurations I use with all my sites. These, if used correctly, should score you an “A+” with no warnings from ssllabs.com. Note: I have an improved entropy package installed (twuewand). This is adapted from the Mozilla config …
Continue reading ssl configuration for apache 2.4 on centos 7 with let’s encrypt
putting owncloud 8 on a subdomain instead of a subdirectory on centos 7
After moving to a new server, I wanted to finally get {{ownCloud}} up and running (over SSL, of course) on it. And I like subdomains for different services, so I wanted to put it at sub.domain.tld. This turns out to be not as straight-forward as one might otherwise hope, sadly – ownCloud expects to be …
Continue reading putting owncloud 8 on a subdomain instead of a subdirectory on centos 7
automated let’s encrypt ssl certificate renewal on centos 7
In my how-to for Let’s Encrypt, I gave an example script that can be called via cron (or manually) which will renew Let’s Encrypt {{SSL}} certificates under {{CentOS}} 6. If you want to do it on {{CentOS}} 7 (which is what I am now running), use the following: cd ~/letsencrypt git pull systemctl stop httpd.service …
Continue reading automated let’s encrypt ssl certificate renewal on centos 7
dave winer is wrong
Or maybe he’s right. But for the wrong reason. Over on Medium, which is where I saw his post, Dave said: “The problem of requiring HTTPs in less than 140 chars: 1.Few benefits for blog-like sites, and 2. The costs are prohibitive. There’s actually a #3 (sorry) — 3. For sites where the owner is …
Continue reading dave winer is wrong
let’s encrypt centos 6 – truly free ssl
There’s been quite a bit of excitement surrounding Let’s Encrypt recently – a truly 100% free {{SSL}} issuer. Last week I helped a friend of mine get his first Let’s Encrypt certificate generated and configured for his website. One of the things I found incredibly frustrating is that Let’s Encrypt does not have a package …
Continue reading let’s encrypt centos 6 – truly free ssl