How To Enable HTTPS For Grafana Using Existing LetsEncrypt Certificates

Author: , July 15th, 2020

How To Upgrade Certbot, Python and PIP on AWS Linux 1

Author: , May 6th, 2020

I ran letsencrypt-auto renew and got the following error:

The solution in this article gave me the answer:

Turns out Python was old at version 2.7, so did the following also:

Also had to change the cron job script to call certbot directly instead of letsencrypt-auto : vi /root/letsencrypt-cron.sh

How To Add AWS EC2 API Tools to Ubuntu AMI Instance

Author: , March 28th, 2013

https://help.ubuntu.com/community/EC2APITools https://help.ubuntu.com/community/Repositories/CommandLine#Adding_the_Universe_and_Multiverse_Repositories As root in /root: vim /etc/apt/sources.list ## Added to the bottom: deb http://us.archive.ubuntu.com/ubuntu/ hardy multiverse deb-src http://us.archive.ubuntu.com/ubuntu/ hardy multiverse deb http://us.archive.ubuntu.com/ubuntu/ hardy-updates multiverse deb-src http://us.archive.ubuntu.com/ubuntu/ hardy-updates multiverse apt-get update apt-get install sun-java5-jre apt-get install unzip wget http://s3.amazonaws.com/ec2-downloads/ec2-api-tools-1.3-34128.zip unzip ec2-api-tools-1.3-34128.zip export EC2_HOME=/root/ec2-api-tools-1.3-34128 export PATH=$PATH:$EC2_HOME/bin mkdir .pem Copy downloaded X.509 private key and cert into […]

Apache 2 SSL Hints

Author: , February 16th, 2011

yum install mod_ssl vim /etc/httpd/conf.d/ssl.conf If you got a sign certificate from Thawt, is may be in a signed bundle in PKCS #7 format. Look for this at the top: —–BEGIN PKCS #7 SIGNED DATA—– To extract the cert that you will need for Apache, run the following command: openssl pkcs7 -print_certs -in signed_bundle.pkcs7 Your […]

How To Generate A Certificate Signing Request (CSR) On CentOS

Author: , January 28th, 2011

Create the private key file key.pem: # openssl genrsa -out key.pem 2048 Create the Certificate Signing Request (CSR) file req.pem: # openssl req -new -key key.pem -out req.pem When it asks for the common name, be sure to enter the full hostname of your server as used in the URL, like www.yourserver.com. This will create […]

Certifiable!

Author: , October 16th, 2009

Got the client’s web server to accept secure connections via SSL. I configured Apache httpd.conf properly so it used the right certificate file and it finally started working. I love lsof – what a great tool. Naomi just got home. Time for some TLC for her.

Looking for Authority…

Author: , October 16th, 2009

Need to find the client’s SSL cert – anyone seen it?