SSL on Debian 10 Apache2 Rumi, December 16, 2021 Assuming you have an SSL certificate already downloaded and available on the server. root@www:~#nano /etc/apache2/sites-available/default-ssl.conf # line 3: change admin email ServerAdminwebmaster@srv.world # line 32,33: change to the certs gotten in section [1] SSLCertificateFile /etc/letsencrypt/live/www.srv.world/cert.pem SSLCertificateKeyFile /etc/letsencrypt/live/www.srv.world/privkey.pem # line 42: uncomment and change to the chain-file gotten in section SSLCertificateChainFile /etc/letsencrypt/live/www.srv.world/chain.pem root@www:~#a2ensite default-ssl Enabling site default-ssl To activate the new configuration, you need to run: systemctl reload apache2 root@www:~#a2enmod ssl Considering dependency setenvif for ssl: Module setenvif already enabled Considering dependency mime for ssl: Module mime already enabled Considering dependency socache_shmcb for ssl: Enabling module socache_shmcb. Enabling module ssl. See /usr/share/doc/apache2/README.Debian.gz on how to configure SSL and create self-signed certificates. To activate the new configuration, you need to run: systemctl restart apache2 root@www:~#systemctl restart apache2 http to https force redirect: If you’d like to set HTTP connection to redirect to HTTPS (Always on SSL/TLS), configure each Virtualhost like follows. It’s also OK to set it in [.htaccess] not in httpd.conf. root@www:~#vi /etc/apache2/sites-available/000-default.conf <VirtualHost *:80> RewriteEngine On RewriteCond %{HTTPS} off RewriteRule ^(.*)$ https://%{HTTP_HOST}%{REQUEST_URI} [R=301,L] root@www:~#a2enmod rewrite Enabling module rewrite. To activate the new configuration, you need to run: systemctl restart apache2 root@www:~#systemctl restart apache2 Verify to access to the test page from a client computer with a Web browser via HTTPS. If you set Always On SSL/TLS, access with HTTP to verify the connection is redirected to HTTPS normally, too Src: https://www.server-world.info/en/note?os=Debian_10&p=httpd&f=8 Related Administrations Configurations (Linux) Apache2HTTPSSSL
Oracle Linux 8: How To Access the GRUB May 17, 2023 Reboot or start the instance. After the console screen is blank, there is only one or two seconds to press <escape key>. Press it several times as quickly as possible. If escape was pressed successfully, the Boot menu will be displayed, if not try again. Note that it is possible… Read More
NFS Firewall September 9, 2015 Dynamic ports cannot be protected by port filtering firewalls such as iptables. First, you need to configure NFS services to use fixed ports. Open /etc/sysconfig/nfs, enter: # vi /etc/sysconfig/nfs Modify config directive as follows to set TCP/UDP unused ports: # TCP port rpc.lockd should listen on. LOCKD_TCPPORT=lockd-port-number # UDP port… Read More
The safest way to clean up /boot partition in Debian or Ubuntu December 7, 2016 First check your kernel version, so you won’t delete the in-use kernel image, running: uname -r Now run this command for a list of installed kernels: dpkg –list ‘linux-image*’ and delete the kernels you don’t want/need anymore by running this: sudo apt-get remove linux-image-VERSION Replace VERSION with the version of… Read More