On 5/26/25 6:49 AM, Patrick O'Callaghan wrote:
On Mon, 2025-05-26 at 00:23 -0700, Samuel Sieb wrote:
If you want a recognized certificate, you either have to buy one or you
can use certbot to get a free one from https://letsencrypt.org/. You
need to remember to renew it regularly. I think they're valid for 3
months at a time. That's what I use.
IIRC it's now down to 14 days, but certbot takes care of it
automatically.
I use a letsencrypt cert on my personal website. You'll need the
certbot package installed. It includes a timer service that will check
at least once a day for an an expiring cert and automatically renew it
well before it expires. The last one I got was at the end of April and
is good until the end of July. However, as Patrick said, they are
supposedly shortening the time. Mine actually updates the cert a month
before it expires.
It was quite a while ago when I set it up but I found the instructions
on line and followed them. The installation automatically included
adding the appropriate lines to the Apache config to use the new cert.
I also redirect incoming connection on port 80 to port 443. I don't
recall if the installation added the config line for that or I did it
myself but I suspect the installation took are of it for me.
In case you're curious the site is http://www.dennett.org. Nothing
exciting. It's my genealogy website.
Charlie
--
_______________________________________________
users mailing list -- users@lists.fedoraproject.org
To unsubscribe send an email to users-le...@lists.fedoraproject.org
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedoraproject.org/archives/list/users@lists.fedoraproject.org
Do not reply to spam, report it:
https://pagure.io/fedora-infrastructure/new_issue
