What are the benefits of installing SSL on NGINX?

If you are still wondering about the benefits of installing SSL, you can refer to the following benefits:

• More trusted by search engines ( Google, Bing..)
• Websites with a more secure HTTPS connection
• Your website becomes more professional in the eyes of visitors
• Minimize network security problems that are extremely unpredictable

Install SSL on NGINX for free with Let’s Encrypt

If you have forgotten how to SSH into the server with Putty, you can review this article.

Step 1: Remove the previous Certbot installation packages

yum remove -y certbot

Step 2: Install Certbot

Currently, the best way to install is through the EPEL repository.

Enable access to the EPEL repository on your server by typing

yum install -y epel-release

Use the following command to download the certbot-nginx package:

yum install -y certbot-nginx

Step 3: Open the firewall port

If you are running a firewall, make sure that ports 80 and 443 are open

firewall-cmd --zone=public --add-port={80,443}/tcp --permanent

firewall-cmd --reload

Type the following command to check

firewall-cmd --list-port

Step 4: Get an SSL certificate

Install the certificate automatically with the following command:

certbot --nginx -d example.com -d www.example.com

It will run certbot with the –nginx plugin to reconfigure Nginx, use -d to determine the valid name of the certificate

Step 5: Auto-renew

By default, LetsEncrypt certificates are only valid for 90 days, so we encourage you to set up automatic renewal of your SSL certificates.

Try before executing the command (create, renew…) for real, can add the option –dry-run at the end of the command. Such as

certbot renew --dry-run

If sure, type the command

certbot renew

Note: If you type the command with LetsEncrypt incorrectly, the error is too much, it will block you from working for about 1 hour.

The automatic renewal command applied to Certbot is located in one of the following files and paths:

/etc/crontab

/etc/cron.*/*

systemctl list-timers

Set up cron jobs to auto-renew

crontab -e 0 0 15 * * /usr/bin/certbot renew --post-hook "systemctl restart nginx" >> /var/log/certbot-renew.log

This line will run the renewal command at 24 hours on the 15th of each month, then save the log to the file /var/log/certbot-renew.log for easy to viewing.

Step 6: Check Certbot working

Once done, open a browser to access the domain name you just installed SSL, if you see the image below, it has been successfully installed. Congratulation!

Through this article KingHostCoupon has helped you know how to install the free Let’s Encrypt SSL for Nginx on CentOS 7. If you have any suggestions, you can leave a comment below.

You can find more information in the articles at:

• http://nginx.org/en/linux_packages.html#RHEL-CentOS
• https://www.nginx.com/resources/wiki/start/

The post How to Install Let’s Encrypt SSL for NginX on CentOS 7 appeared first on King Host Coupon.

SSL (Security Socket Layer) is a web protocol used to protect traffic to the server through encryption.

Typically, e-commerce or online financial services need this protocol because they often store sensitive information, like credit cards.

However, SSL certificates have now become a common standard for all websites, to protect user’s confidential data, like login information, social security numbers, ID cards, and more.

Fortunately, you can get a completely free and easy SSL certificate from the provider Let’s Encrypt, and we will guide you through installing SSL for Apache Webserver on a CentOS 7 server in this article.

How to install Let’s Encrypt SSL certificate for Apache on CentOS 7

You will need to reread how to access the Server’s SSH using Putty if you forgot.

Let’s Encrypt provides everyone with a completely free SSL certificate. Let’s see how to install it on Apache Webserver running CentOS 7 below.

Step 1: To get started you will need to update your system first with the following command

yum -y update

Step 2: Install mod_ssl to configure Let’s Encrypt

yum install -y mod_ssl

Step 3: Install EPEL repository and yum-utils

yum –y install epel-release yum-utils

Step 4: install Certbot for apache

yum –y install certbot-apache

Step 5: Install SSL

certbot

We need to go to the /etc/letsencrypt/live/{domain} directory to check the files containing the SSL key and certificate.

How to set up for automatic certificate renewal

By default, Let’s Encrypt is only valid for 90 days from the date of registration. So automatic certificate renewal is very important because if you forget it, the SSL certificate will expire. Therefore we need to set it to automatically renew when it is almost expired.

Step 1: Run the command below to check the renewal process manually

certbot renew –dry-run

This command will check for renewal of the current certificate if the certificate is less than 30 days from the expiration date.

Step 2: Adjust the cronjob to be able to run the auto-renew check command

acrontab -e

Add below line in cronjob

0 0 15 * * /usr/bin/certbot renew >/dev/null 2>&1

Thus, the above cronjob will automatically renew at 00:00 on the 15th of every month, you will not need to worry about forgetting to renew the certificate when it is almost expired.

Good luck!

The post How to Install free Let’s Encrypt SSL for Apache Webserver on CentOS 7 appeared first on King Host Coupon.

SSL – Secure Sockets Layer is a standard of security technology, encrypted communication between web server server and browser. Since 2014, Google has officially prioritized websites that support the HTTPS protocol in search results. Starting September, Apple ‘s Safari browser will also impose conditions on websites that use the protocol . Its importance is increasing.

Let’s Encrypt is a non-profit organization established with the sponsorship of large organizations in the world Facebook, Chrome, Mozilla, Cisco, Akamai …; works with the purpose of providing completely free SSL certificates , making 100% of websites encrypted, creating a safer Internet environment. The SSL certificate issued by Let’s Encrypt is valid for 90 days. However, you can set up automatic renewal of this certificate easily.

Because of the free offer, Let’s Encrypt must also impose some restrictions on this type of certificate to avoid wasting resources, indiscriminate use registration. Refer here .

In just two and a half years, the number of websites Let’s Let’s Encrypt serves has quadrupled.

In June of 2017 we were serving approximately 46M websites, and we did so with 11 full time staff and an annual budget of $2.61M. Today we serve nearly 192M websites with 13 full time staff and an annual budget of approximately $3.35M.

However, the number of full-time employees also increased by only 2, from 11 to 13.

Statistics on January 23, 2019, said Let’s Encrypt has released an average of 1 million digital certificates every day. By the end of February 2020, Let’s Encrypt has issued a total of 1 billion free SSL certificates, after 4 years of operation.

Let's Encrypt issues around 1 million certificates each day. Each of these is a win for a more encrypted Web!

— Let's Encrypt (@letsencrypt) January 22, 2019

Although using the free SSL certificate from Let’s Encrypt has helped webmasters save a lot of money for many years, you should consider using paid for support as well as the necessary insurance policy. You should buy PossitiveSSL just only $2.99/year at SSLs.com

The post Let’s Encrypt has reached 1 billion free SSL certificates appeared first on King Host Coupon.