Changes between Version 5 and Version 6 of SystemAdministration/Security/TLS
- Timestamp:
- 12/02/15 11:30:03 (8 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
SystemAdministration/Security/TLS
v5 v6 1 1 = Creating a TLS certificate 2 == Bundle for ` ssl_certificate` (root, intermediate, site)2 == Bundle for `nginx`'s `ssl_certificate` (site, intermediate, root) 3 3 {{{ 4 4 #!sh … … 7 7 printf '\n' > 'newline' && 8 8 ## Concatenate certificates in this order for Nginx 9 cat 'clarin.eu/cert/ GeoTrustGlobalCA.cer' 'newline' 'clarin.eu/cert/RapidSSLSHA256CA-G3.cer' 'newline' 'clarin.eu/cert/wildcard-clarin-eu.cer' 'newline' > 'bundle.cer'9 cat 'clarin.eu/cert/wildcard-clarin-eu.cer' 'newline' 'clarin.eu/cert/RapidSSLSHA256CA-G3.cer' 'newline' 'clarin.eu/cert/GeoTrustGlobalCA.cer' 'newline' > 'bundle.cer' 10 10 dos2unix 'bundle.cer' 11 11 }}} 12 12 13 == Bundle for ` ssl_trusted_certificate` (root, intermediate)13 == Bundle for `nginx`'s `ssl_trusted_certificate` (root, intermediate) 14 14 15 15 {{{ … … 22 22 dos2unix 'trusted_bundle.cer' 23 23 }}} 24 25 == Testing connectivity to an HTTPS web server that uses Server Name Indication 26 If you have e.g. a Docker container listening on 127.0.0.1, port 443, issue: 27 {{{ 28 #!sh 29 curl -v --resolve 'infra.clarin.eu:443:127.0.0.1' 'https://infra.clarin.eu' 30 }}}