ijuarez Posted May 7, 2015 Share Posted May 7, 2015 Anyone using a cert that is not self created and not free from a vendor? I am looking at https://sslmate.com/ priced good right for me. I want to provide SSL for owncloud and Tonido, while the self created ones are not bad I hate the fact that you get the SSL cannot be trusted error. SSLmate uses a command line to install and buy certs but it looks to me like where you run it is where the certs will reside, not good if you want to run it on a docker. Basically is it worth getting a SSL cert or just stick to what the docket authors have provided. Open comments and flames. Quote Link to comment
CHBMB Posted May 7, 2015 Share Posted May 7, 2015 Take a look at smdions instructions on setting up a Apache reverse proxy, there's a link to setting up SSL there, on my phone at the moment so don't have it to hand, but it's free and I use it with no problems. I'll post the link tomorrow, PM me if I forget (working nights so tired and forgetful!) Quote Link to comment
CHBMB Posted May 9, 2015 Share Posted May 9, 2015 Anyone using a cert that is not self created and not free from a vendor? I am looking at https://sslmate.com/ priced good right for me. I want to provide SSL for owncloud and Tonido, while the self created ones are not bad I hate the fact that you get the SSL cannot be trusted error. SSLmate uses a command line to install and buy certs but it looks to me like where you run it is where the certs will reside, not good if you want to run it on a docker. Basically is it worth getting a SSL cert or just stick to what the docket authors have provided. Open comments and flames. Sorry forgot about this post, told you I was tired and forgetful! Here's what I used, works great and didn't cost a penny - SSL Certs Quote Link to comment
segator Posted May 9, 2015 Share Posted May 9, 2015 I'm using proxy reverse(Reverse-Proxy by smdion) to centralize al docker service in one domain with signed cert ssl. I implemented like this.. download.mydomain.com(rutorrent docker) cloud.mydomain.com(pydio docker) media.mydomain.com(self app docker) backup.mydomain.com(self app docker) etc... the best thing of this is that you can redirect all diferents ports to 80 or 443 You need to create one virtual server and one signed cert ssl for every subdomain on your dns server you need to redirect *.mydomain.com to your IP(if you have dynamic IP) I recommend you that use dynamic domain service like OVH domains(it is that i'm using) This config work specifically with startssl free signed certs Example in proxy-config.conf <VirtualHost *:443> ServerName cloud.mydomain.com <Proxy *> Order deny,allow Allow from all </Proxy> SSLEngine on SSLProxyEngine On SSLProtocol all -SSLv2 SSLCipherSuite ALL:!ADH:!EXPORT:!SSLv2:RC4+RSA:+HIGH:+MEDIUM SSLCertificateFile /config/cloud.mydomain.com.crt SSLCertificateKeyFile /config/cloud.mydomain.com.key SSLCertificateChainFile /config/sub.class1.server.ca.pem ProxyRequests On ProxyPreserveHost On ProxyPass / https://localhost:8181/ ProxyPassReverse / https://localhost:8181/ </VirtualHost> Quote Link to comment
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.