Public
- Public
- Network
- Groups
- Featured
- Popular
- People

Conversation

Notices

Embed this notice
Annika Backstrom (annika@xoxo.zone)'s status on Sunday, 16-Jun-2024 21:23:09 JST Annika Backstrom

Got any scripts for managing self-signed certs (for websites) that you'd care to share? #AskMastodon :boost_no:

In conversation about 6 months ago from xoxo.zone permalink
- Embed this notice
  Annika Backstrom (annika@xoxo.zone)'s status on Sunday, 16-Jun-2024 21:55:03 JST Annika Backstrom
  in reply to
  - social elephant in the room
  @tseitr I have some internal sites (on my LAN, served by my NAS) and it's tedious to manually re-run the Let's Encrypt flow every ~90 days. Would rather switch to self-signed certs, with a CA I can copy to my handful of devices
  
  In conversation about 6 months ago permalink
- Embed this notice
  social elephant in the room (tseitr@mastodon.sdf.org)'s status on Sunday, 16-Jun-2024 21:55:04 JST social elephant in the room
  in reply to
  
  @annika but unsure of exactly what you mean by "manage" (and also, why self-signed for websites (unless corporate or private with a full pki)
  
  In conversation about 6 months ago permalink
- Embed this notice
  social elephant in the room (tseitr@mastodon.sdf.org)'s status on Sunday, 16-Jun-2024 21:55:05 JST social elephant in the room
  in reply to
  
  @annika for self signed, my chat app had an ansible recipe https://codeberg.org/ditchgithub/temporary.chat/src/branch/master/roles/chat_server/tasks/pki.yaml
  In conversation about 6 months ago permalink
  Attachments
  1. Domain not in remote thumbnail source whitelist: codeberg.org
    
    temporary.chat/roles/chat_server/tasks/pki.yaml at master
    
    from ditchgithub
    
    temporary.chat - an ansible playbook to deploy a chat server. works with or without a domain name can create a single room or multiples (random) rooms you can create password protected rooms anyone within the room can destroy it with a single click
- Embed this notice
  Annika Backstrom (annika@xoxo.zone)'s status on Sunday, 16-Jun-2024 22:04:36 JST Annika Backstrom
  in reply to
  - social elephant in the room
  @tseitr Thank you!
  
  In conversation about 6 months ago permalink
- Embed this notice
  social elephant in the room (tseitr@mastodon.sdf.org)'s status on Sunday, 16-Jun-2024 22:04:37 JST social elephant in the room
  in reply to
  
  @annika got you, I also have a little bash script here : https://200013.net/doc/linux/openssl/create_pki.html
  In conversation about 6 months ago permalink
  Attachments
  1. No result found on File_thumbnail lookup.
    
    linux openssl create a root certification authority
- Embed this notice
  old man and the cbowns (cbowns@xoxo.zone)'s status on Monday, 17-Jun-2024 03:50:26 JST old man and the cbowns
  in reply to
  
  @annika just here to say these replies already look useful, I think I have a similar need as yours and this seems good!
  
  In conversation about 6 months ago permalink
- Embed this notice
  Annika Backstrom (annika@xoxo.zone)'s status on Monday, 17-Jun-2024 15:47:23 JST Annika Backstrom
  in reply to
  - Patrice
  @patrice Whoa this is cool as heck
  
  In conversation about 6 months ago permalink
- Embed this notice
  Patrice (patrice@techhangout.social)'s status on Monday, 17-Jun-2024 15:47:24 JST Patrice
  in reply to
  
  @annika I use StepCA locally. It offers an ACME compatible API
  https://smallstep.com/docs/step-ca/getting-started/
  
  In conversation about 6 months ago permalink
- Embed this notice
  Annika Backstrom (annika@xoxo.zone)'s status on Monday, 17-Jun-2024 18:07:06 JST Annika Backstrom
  in reply to
  - Patrice
  @patrice Whoa that is very cool. The default 24h lifetime for certs is inconvenient but overall this looks like a pretty neat tool
  
  In conversation about 6 months ago permalink

Public

Conversation

Notices

Feeds