Go to file
informatic fea3976774 Add dehydrated howto 2017-04-07 15:52:58 +02:00
client Update hooks, add dehydrated hook 2017-04-07 15:13:57 +02:00
server Decrease default ttl in PowerDNS 2017-04-07 14:17:55 +02:00
.gitignore Initial commit 2017-03-12 19:55:28 +01:00
README.md Add dehydrated howto 2017-04-07 15:52:58 +02:00



PoC for letsencrypt SSL certificates, as public, as local hswaw DNS zone is.


cp server/config.cfg.dist server/config.cfg
vim server/config.cfg

cp client/hook-config.dist client/hook-config
vim client/hook-config

(cd server && python master.py) &

certbot-auto certonly --manual --preferred-challenges=dns \
    --manual-auth-hook `pwd`/client/install-hook.sh \
    --manual-cleanup-hook `pwd`/client/cleanup-hook.sh \
    --manual-public-ip-logging-ok \
    -d testing2.waw.inf.re


# This is probably the most sensible method for SSL on raspi.
git clone https://github.com/lukas2511/dehydrated /root/dehydrated
/root/dehydrated/dehydrated --accept-terms --register
/root/dehydrated/dehydrated -c -t dns-01 --hook /root/local-letsencrypt/client/dehydrated-hook.sh -d stuff.waw.hackerspace.pl