X-Git-Url: https://git.ralfj.de/web.git/blobdiff_plain/f685642466ee2cd5fb58298ca12b153b5738507a..e1521880431e5d8a7eb2f6e887aca14260516f07:/personal/_posts/2017-12-26-lets-encrypt.md diff --git a/personal/_posts/2017-12-26-lets-encrypt.md b/personal/_posts/2017-12-26-lets-encrypt.md index 3f4fbee..e63d77b 100644 --- a/personal/_posts/2017-12-26-lets-encrypt.md +++ b/personal/_posts/2017-12-26-lets-encrypt.md @@ -1,6 +1,6 @@ --- title: Let's Encrypt Tiny -categories: Sysadmin +categories: sysadmin --- I think all HTTP communication on the internet should be encrypted -- and thanks @@ -192,7 +192,7 @@ SSLHonorCipherOrder on [bettercrypto.org](https://bettercrypto.org) because I prefer to not update it with every change in OpenSSL's supported ciphers.) -## Obtaining the first certificate +## Obtaining the First Certificate You can now run `letsencrypt-tiny -c letsencrypt.conf init` to perform the initial setup. @@ -201,7 +201,7 @@ In the future, to change the set of domains, first edit the config file and then run `letsencrypt-tiny -c letsencrypt.conf -k renew`. The `-k` tells Let's Encrypt Tiny to also run the certificate hook. -## Automation via cron +## Automation Via Cron Let's Encrypt certificates expire after 90 days, so we want renewal to be automated. To this end, just make sure that `letsencrypt-tiny -c