chirale

IT and beyond

Tune the HTTPS ciphers on TLS according to your visitors and security. Configuration examples and tests.

Certificates renewal can be difficult to automate leading to errors that will mark the website as “Insecure”. Before continue, ensure you haven’t the /etc/cron.d/certbot file launching: If a crontab appear, you already have an automatic renew enabled via a certbot plugin like nginx or apache (the preferred method) and you shouldn’t do nothing. The following …

Continue reading

HTTPS, encrypt via SSL / TLS

Here how you can get free SSL cerificates using Let’s Encrypt. Forget about the expire of certificates using the auto-renewal script. A complete reference to install a Let’s Encrypt certificate is this Digital Ocean’s howto. Here there’s a quick guide based on it, plus some additional suggestions. Here we go! The following code download the …

Continue reading