Certificados SSL con Certbot
Publish date: Aug 4, 2020
Vamos a ver como podemos instalar un certificado SSL gratuito en nuestro servidor, para que las conexiones sean seguras y los datos viajen cifrados entre el cliente y el servidor.
Instalación
Actualizamos los repositorios e instalamos los paquetes necesarios
apt-get updateapt-get install -y python3-certbot python3-certbot-nginx certbot
Configuración
Con el siguiente comando certbot añade automáticamente la configuración a nuestro servidor web.
certbot --nginx
Enter email address (used for urgent renewal and security notices)
(Enter 'c' to cancel):
Please read the Terms of Service at
https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf. You must
agree in order to register with the ACME server. Do you agree?
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
(Y)es/(N)o:
Would you be willing, once your first certificate is successfully issued, to
share your email address with the Electronic Frontier Foundation, a founding
partner of the Let's Encrypt project and the non-profit organization that
develops Certbot? We'd like to send you email about our work encrypting the web,
EFF news, campaigns, and ways to support digital freedom.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
(Y)es/(N)o:
Which names would you like to activate HTTPS for?
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
1: misitio.nexosocial.org
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Select the appropriate numbers separated by commas and/or spaces, or leave input
blank to select all options shown (Enter 'c' to cancel)
Certbot añade al cron del sistema la actualización automática del certificado