RoE | Wiki

User Tools

Site Tools

Trace: volumio onn_4k_2021_dopinder dota_2_pre-crownfall_steamcmd mangos_zero_vanilla_localhost devilutionx
servers:linux:nginx:lets_encrypt

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
servers:linux:nginx:lets_encrypt [2025/07/16 13:46] Sean Rhoneservers:linux:nginx:lets_encrypt [2026/04/17 22:07] (current) – [Settings] openSUSE TW -> Ubuntu (WIP) Sean Rhone
Line 1: Line 1:
 ====== Information ====== ====== Information ======
  
-  * Let's Encrypt ((https://letsencrypt.org)) +  * Let's Encrypt 
-  * Certbot ((https://certbot.eff.org)) +  * Certbot 
-  * [[Information:Realm of Espionage]]+  * [[information:realm_of_espionage|Realm of Espionage]]
  
 ===== Prerequisites ===== ===== Prerequisites =====
  
   * [[linux:distros:server:opensuse_tumbleweed_server|openSUSE Tumbleweed (Server)]]   * [[linux:distros:server:opensuse_tumbleweed_server|openSUSE Tumbleweed (Server)]]
-  * [[servers;linux;nginx_php_php-fpm|nginx]]+  * [[servers:linux:nginx_php_php-fpm|nginx]]
  
 ====== Dependencies ====== ====== Dependencies ======
Line 21: Line 21:
  
 <code> <code>
-verbose = true +verbose = 'true
-text = true +max-log-backups = '0' 
-non-interactive = true +text = 'true' 
-standalone = true +non-interactive = 'true' 
-force-renewal = true +standalone = 'true' 
-agree-tos = true +force-renewal = 'true' 
- +agree-tos = 'true'
-########## +
-#CHANGEME# +
-##########+
  
 +########################################
 email = espionage724@x email = espionage724@x
 +########################################
  
-########## +no-eff-email = 'true'
-#CHANGEME# +
-##########+
  
-no-eff-email = true+rsa-key-size '4096' 
 +redirect = 'true
 +hsts = 'true' 
 +uir = 'true' 
 +staple-ocsp = 'false' 
 +key-type = 'ecdsa' 
 +elliptic-curve = 'secp384r1'
  
-rsa-key-size = 4096 +pre-hook systemctl stop 'nginx' 
-redirect = true +post-hook systemctl start 'nginx'
-hsts = true +
-uir true +
-staple-ocsp false+
  
-domains = realmofespionage.xyz, blog.realmofespionage.xyz, files.realmofespionage.xyz, media.realmofespionage.xyz, wiki.realmofespionage.xyz+domains = 'realmofespionage.xyz, wiki.realmofespionage.xyz, media.realmofespionage.xyz, blog.realmofespionage.xyz, social.realmofespionage.xyz, forums.realmofespionage.xyz, status.realmofespionage.xyz, files.realmofespionage.xyz, test.realmofespionage.xyz'
  
 # End</code> # End</code>
Line 55: Line 55:
  
   sudo 'certbot' 'certonly' --config '/etc/letsencrypt/cli-custom.ini' --dry-run   sudo 'certbot' 'certonly' --config '/etc/letsencrypt/cli-custom.ini' --dry-run
 +
 +  sudo systemctl stop 'nginx'
  
 ====== Automatic Cert Renewal ====== ====== Automatic Cert Renewal ======
Line 65: Line 67:
 [Service] [Service]
 Type=oneshot Type=oneshot
 +
 +WorkingDirectory=/etc/letsencrypt
 +
 ExecStart='/usr/bin/certbot' 'certonly' --config '/etc/letsencrypt/cli-custom.ini' --quiet ExecStart='/usr/bin/certbot' 'certonly' --config '/etc/letsencrypt/cli-custom.ini' --quiet
 +
 +ExecStartPost='/usr/bin/sync'
  
 # End</code> # End</code>
  
 ===== Timer ===== ===== Timer =====
 +
 +  * Weekly (Sunday) ''07:00:00 AM''
  
   sudo -e '/etc/systemd/system/certbot-renew-custom.timer' && sudo systemctl daemon-reload && sudo systemctl enable 'certbot-renew-custom.timer' --now   sudo -e '/etc/systemd/system/certbot-renew-custom.timer' && sudo systemctl daemon-reload && sudo systemctl enable 'certbot-renew-custom.timer' --now
Line 80: Line 89:
  
 [Timer] [Timer]
-OnCalendar=weekly+OnCalendar=Sun *-*-* 07:00:00
 Persistent=true Persistent=true
  
Line 87: Line 96:
  
 # End</code> # End</code>
 +
 +  sudo systemctl start 'certbot-renew-custom' && sudo systemctl status 'certbot-renew-custom' -l
  
/var/www/wiki/data/attic/servers/linux/nginx/lets_encrypt.1752688017.txt.gz · Last modified: by Sean Rhone
Except where otherwise noted, content on this wiki is licensed under the following license: CC0 1.0 Universal
CC0 1.0 Universal Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki