Menu

Tag: https

Installing Nginx on CentOS 7 with Let’s Encrypt HTTPS certificates

First off, you need a CentOS instance. If you want to go the VPS route, I recommend Vultr. If you don’t have an account yet, I’d really appreciate if you could use my affiliate link when signing up 🙂 Once done, you also need an SSL certificate. Then you can use my script to do […]

Free Wildcard Certificates using Cloudflare, Let’s Encrypt and acme.sh

Preface I already covered Azure DNS, it’s time to cover Cloudflare, too. If you haven’t done so yet, sign up to Cloudflare (it’s free), and move your domain name to Cloudflare. Note: Cloudflare can (and in fact does, by default) proxy your website and generate SSL certificates for you automatically (which you can disable by […]

Dedicated Killing Floor 2 Server on Linux

BIG FAT WARNING This tutorial is deprecated. Please use the revised guide. This one is only here for historical reference. Prelude This article will guide you through setting up a proper KF2 server on Linux (CentOS) step-by-step. What we’re going to do here is: fire up a CentOS server with firewall, Security-Enhanced Linux and hardened […]

The Let’s Encrypt client becomes Certbot

Some time ago the folks at Let’s Encrypt announced that there’ll be some rebranding and stuff. It seems that has materialized just now with EFF’s announcement of Certbot: Announcing Certbot: EFF’s Client for Let’s Encrypt This should be really just a rebranding, no radical underlying changes. They’ve also set up a nice website for the […]

Let’s Encrypt now available via EPEL

That’s right folks, the Let’s Encrypt client has just been committed to EPEL! Now all you have to do on EL-based distros: yum update yum install letsencrypt letsencrypt certonly -d foo.bar -d www.foo.bar No more git clone, no more GCC, kernel headers, virtualenv and pip for letsencrypt-auto, it simply just works. The certs will be […]

Jenkins over HTTPS with JNLP slaves

So you install Jenkins and also deploy Nginx over it. Eventually you also enable, or even enforce SSL. Later, you may get really cocky and also setup required protocol versions and ciphers suites. And that’s where the shit may hit the fan. So here’s a rather strict Nginx SSL configuration excerpt: ssl_protocols TLSv1.2; ssl_session_cache builtin:1000 […]