Last active
November 10, 2015 23:39
-
-
Save pdp7/9b6231ff5741a2f0fdbe to your computer and use it in GitHub Desktop.
Let's Encrypt beta program instructions
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# File: /etc/apache2/sites-enabled/default-ssl.conf | |
<IfModule mod_ssl.c> | |
<VirtualHost *:443> | |
SSLEngine on | |
SSLProtocol all -SSLv2 -SSLv3 | |
SSLCipherSuite ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DH | |
E-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:EC | |
DHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE | |
-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:AES:CAMELLIA:DE | |
S-CBC3-SHA:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!MD5:!PSK:!aECDH:!EDH-DSS-DES-CBC3-SHA:!EDH-RSA-DES-CBC3-SHA:!KRB5-DES-CBC3-SHA | |
SSLHonorCipherOrder on | |
SSLCompression off | |
SSLCertificateFile /etc/letsencrypt/live/pdp7.com/fullchain.pem | |
SSLCertificateKeyFile /etc/letsencrypt/live/pdp7.com/privkey.pem | |
ServerSignature Off | |
AcceptPathInfo Off | |
AddOutputFilterByType DEFLATE text/html text/plain text/xml application/pdf | |
AddDefaultCharset UTF-8 | |
SSLOptions +StrictRequire | |
ServerAdmin admin@pdp7.com | |
ServerName pdp7.com | |
DocumentRoot /var/www/html | |
ErrorLog ${APACHE_LOG_DIR}/error.log | |
LogLevel warn | |
CustomLog ${APACHE_LOG_DIR}/access.log combined | |
LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-agent}i\"" vhost_combined | |
LogFormat "%v %h %l %u %t \"%r\" %>s %b" vhost_common | |
</VirtualHost> | |
</IfModule> |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Subject: Let's Encrypt Closed Beta Invite | |
Greetings from Let's Encrypt, drew@pdp7.com. | |
Thank you for your interest in our beta program! We're excited to let you know that your domains (below) have been whitelisted, and you can now utilize an ACME client to obtain a certificate for them. | |
Quick Start | |
To use Let's Encrypt's official client to obtain your real certificates, you will need to provide the production API URL on the command line: | |
https://acme-v01.api.letsencrypt.org/directory | |
When running the Python client (installation directions [1]), be sure to specify the --server argument with the production URL: | |
git clone https://github.com/letsencrypt/letsencrypt | |
cd letsencrypt | |
./letsencrypt-auto --agree-dev-preview --server \ | |
https://acme-v01.api.letsencrypt.org/directory auth | |
If you are using a different ACME client, be sure to configure it to use the production URL in order to get valid certificates. Many clients will default to the staging URL. | |
Known Issues | |
There are some known issues with the official Python client posted here: https://github.com/letsencrypt/letsencrypt/wiki/Known-issues |
Let's Encrypt Beta Participation Request
https://docs.google.com/forms/d/15Ucm4A20y2rf9gySCTXD6yoLG6Tba7AwYgglV7CKHmM/viewform?edit_requested=true
Beta Program Announcements
https://community.letsencrypt.org/t/beta-program-announcements/1631
This read-only topic will announce updates regarding the Let's Encrypt Beta Program. This information is provided for those who have received their invites to the Beta Program. If you would like to join the Beta, sign up here5.9k.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Installation instructions worked OK problem for Debian 8 (Jessie) server on DigitalOcean with Apache2