SSL certificates

letsencrypt allow you to get ssl certificates for free. They make it pretty easy to automate the process, including the auto renewal (that’s the whole point).

Note: updated on 2016-07-02 after it went out of beta, following the certbot eff instructions.

Install on Debian jessie (using backports):

sudo apt-get install python-certbot-apache -t jessie-backports

Get the certificates and generate the apache config:

sudo certbot --apache

During the install, I got the error message:

apache2: Syntax error on line 219 of /etc/apache2/apache2.conf: Syntax error on line 32 of /etc/apache2/sites-enabled/wordpress-le-ssl.conf: Expected </VirtualHost> but saw </VirtualHost></IfModule>

Add a new line at the end of /etc/apache2/sites-available/wordpress.conf file and rerun using the same certs.

Finally add the renewal to the crontab:

17 21 * * 3 /usr/bin/certbot renew --quiet/pre>

Leave a Reply

Your email address will not be published. Required fields are marked *