RE: Let's Encrypt (LE) and port 80

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



You can just setup a global redirect on your 80 listener but exclude LE root path


RewriteEngine On
        RewriteCond %{REQUEST_URI} !^/.well-known/acme-challenge/.*
        RewriteRule ^ https://%{HTTP_HOST}%{REQUEST_URI} [QSA,L,R=301]


Danny


-------- Original message --------
From: Tom Browder <tom.browder@xxxxxxxxx>
Date: 6/17/20 8:06 AM (GMT-06:00)
To: users@xxxxxxxxxxxxxxxx
Subject: [users@httpd] Let's Encrypt (LE) and port 80

Before LE came along, I tightened my single server down to redirect http to https. With LE I've been using the cert generation method where I stop Apache, create the required certs with a Raku program, and restart Apache.

Now with my new Apache 2.4.43 I'm ready to automate the process. Is there any way to allow port 80 access but only from an LE server?

The only time that would be needed, as far as I know, is when I first add a new domain and it obviously would not have a cert yet.

Thanks.

Best regards,

-Tom

[Index of Archives]     [Open SSH Users]     [Linux ACPI]     [Linux Kernel]     [Linux Laptop]     [Kernel Newbies]     [Security]     [Netfilter]     [Bugtraq]     [Squid]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Samba]     [Video 4 Linux]     [Device Mapper]

  Powered by Linux