May 7, 201511 yr Anyone using a cert that is not self created and not free from a vendor? I am looking at https://sslmate.com/ priced good right for me. I want to provide SSL for owncloud and Tonido, while the self created ones are not bad I hate the fact that you get the SSL cannot be trusted error. SSLmate uses a command line to install and buy certs but it looks to me like where you run it is where the certs will reside, not good if you want to run it on a docker. Basically is it worth getting a SSL cert or just stick to what the docket authors have provided. Open comments and flames.
May 7, 201511 yr Take a look at smdions instructions on setting up a Apache reverse proxy, there's a link to setting up SSL there, on my phone at the moment so don't have it to hand, but it's free and I use it with no problems. I'll post the link tomorrow, PM me if I forget (working nights so tired and forgetful!)
May 9, 201511 yr Anyone using a cert that is not self created and not free from a vendor? I am looking at https://sslmate.com/ priced good right for me. I want to provide SSL for owncloud and Tonido, while the self created ones are not bad I hate the fact that you get the SSL cannot be trusted error. SSLmate uses a command line to install and buy certs but it looks to me like where you run it is where the certs will reside, not good if you want to run it on a docker. Basically is it worth getting a SSL cert or just stick to what the docket authors have provided. Open comments and flames. Sorry forgot about this post, told you I was tired and forgetful! Here's what I used, works great and didn't cost a penny - SSL Certs
May 9, 201511 yr I'm using proxy reverse(Reverse-Proxy by smdion) to centralize al docker service in one domain with signed cert ssl. I implemented like this.. download.mydomain.com(rutorrent docker) cloud.mydomain.com(pydio docker) media.mydomain.com(self app docker) backup.mydomain.com(self app docker) etc... the best thing of this is that you can redirect all diferents ports to 80 or 443 You need to create one virtual server and one signed cert ssl for every subdomain on your dns server you need to redirect *.mydomain.com to your IP(if you have dynamic IP) I recommend you that use dynamic domain service like OVH domains(it is that i'm using) This config work specifically with startssl free signed certs Example in proxy-config.conf <VirtualHost *:443> ServerName cloud.mydomain.com <Proxy *> Order deny,allow Allow from all </Proxy> SSLEngine on SSLProxyEngine On SSLProtocol all -SSLv2 SSLCipherSuite ALL:!ADH:!EXPORT:!SSLv2:RC4+RSA:+HIGH:+MEDIUM SSLCertificateFile /config/cloud.mydomain.com.crt SSLCertificateKeyFile /config/cloud.mydomain.com.key SSLCertificateChainFile /config/sub.class1.server.ca.pem ProxyRequests On ProxyPreserveHost On ProxyPass / https://localhost:8181/ ProxyPassReverse / https://localhost:8181/ </VirtualHost>
Archived
This topic is now archived and is closed to further replies.