Differences

This shows you the differences between two versions of the page.

--- servers:nginx:lets_encrypt [2019/06/28 17:14] – Sean Rhone
+++ servers:nginx:lets_encrypt [2024/02/07 14:33] – Fedora Server -> Ubuntu Server Sean Rhone
@@ Line 2: / Line 2: @@
   * Let's Encrypt ((https://letsencrypt.org))
+  * Certbot ((https://certbot.eff.org))
   * [[Information:Realm of Espionage]]
 ===== Prerequisites =====
-  * [[distros:fedora_server|Fedora Server]]
+  * [[distros:ubuntu_server|Ubuntu Server]]
-  * [[servers:nginx_php_php-fpm | nginx + PHP + PHP-FPM]] ((Certbot doesn't necessarily require nginx; if not using nginx, then port 443/tcp is likely needed to be opened and pre/post-hooks/service restarting changed))
+  * [[servers:nginx_php_php-fpm|nginx + PHP + PHP-FPM]] ((Certbot doesn't necessarily require nginx; if not using nginx, then port 443/tcp is likely needed to be opened and pre/post-hooks/service restarting changed))
+  * [[servers:nginx:lets_encrypt?rev=1704222385|Previous Fedora Server revision]]
 ====== Dependencies ======
@@ Line 13: / Line 16: @@
 ****
-  sudo dnf install 'certbot'
+  sudo apt install 'python3-certbot'
 ====== Settings ======
@@ Line 21: / Line 24: @@
   * ''must-staple = true'' is disabled due to being incompatible with Firefox ((last tested 2019/06/28 with Firefox 67.0.4; it didn't work; likely a config error on my part since this hasn't worked at all since 2018))
-  sudo -e '/etc/letsencrypt/cli-custom.ini'
+  sudo mkdir -p '/etc/letsencrypt' && sudo -e '/etc/letsencrypt/cli-custom.ini'
 <code>
@@ Line 30: / Line 33: @@
 force-renewal = true
 agree-tos = true
+##########
+#CHANGEME#
+##########
 email = espionage724@x
+##########
+#CHANGEME#
+##########
 no-eff-email = true
@@ Line 43: / Line 55: @@
 post-hook = systemctl start 'nginx'
-domains = realmofespionage.xyz, blog.realmofespionage.xyz, files.realmofespionage.xyz, media.realmofespionage.xyz, social.realmofespionage.xyz, test.realmofespionage.xyz, wiki.realmofespionage.xyz</code>
+domains = realmofespionage.xyz, blog.realmofespionage.xyz, files.realmofespionage.xyz, media.realmofespionage.xyz, social.realmofespionage.xyz, test.realmofespionage.xyz, wiki.realmofespionage.xyz, wow.realmofespionage.xyz
+# End</code>
 ====== Obtain Certs ======
-  * :!: If it passes the dry run, remove the argument and re-run ((the dry run will likely fail the nginx restart step since the certs don't actually exist yet))
+  * :!: If it passes the dry run, remove the dry-run argument and re-run ((the dry run will likely fail the nginx restart step since the certs don't actually exist yet))
   sudo 'certbot' 'certonly' --config '/etc/letsencrypt/cli-custom.ini' --dry-run
@@ Line 61: / Line 75: @@
 Type=oneshot
 ExecStart='/usr/bin/certbot' 'certonly' --config '/etc/letsencrypt/cli-custom.ini' --quiet
-ExecStartPost='/bin/sync'</code>
+ExecStartPost='/usr/bin/sync'
+# End</code>
 ===== Timer =====
@@ Line 78: / Line 94: @@
 [Install]
-WantedBy=multi-user.target</code>
+WantedBy=multi-user.target
+# End</code>