How to add let's encrypt certificate in Ubuntu 14.04.2 and xampp 7.1.1
my domain http://aksternet.pp.ua/
Isn't XAMPP only for test systems? Can you just use a self-signed cert?
This is from the official XAMPP FAQ
XAMPP is not meant for production use but only for development environments. XAMPP is configured to be open as possible to allow the developer anything he/she wants. For development environments, this is great but in a production environment, it could be fatal.
2 Likes
Isn't Ubuntu 14 dead?
2 Likes
It's been dead and buried for over five and a half years. Even the final paid option of Extended Security Maintenance ended 7 months ago.
It has been gone so long that you will have to click the button labeled Show more unmaintained releases to even find it on the following page.
3 Likes
I have business projects running in xampp and people come from Google search and buy my product
Storing payment info on such a site sounds risky.
As for getting a cert you should review these topics
Getting Started: Getting Started - Let's Encrypt
Challenge Types: Challenge Types - Let's Encrypt
A popular ACME Client is Certbot. It's docs are below. Your best option is the --webroot. Do not try the --apache option. It will not recognize the XAMPP Apache config file locations.
https://eff-certbot.readthedocs.io/en/latest/using.html
To configure your XAMPP Apache for HTTPS after you get a cert see: https://ssl-config.mozilla.org/
3 Likes
While developing and debugging:
Please consider using the Staging Environment - Let's Encrypt until you've debugged the error; as the limits are much higher.
Also see:
3 Likes
Need step by step steps to install the certificate. There are many possibilities but in reality nothing works.
The overall steps are
Use Certbot --webroot method to get a cert. See Certbot docs for installing and using it. Command is something like
sudo certbot certonly --webroot -w (path) -d aksternet.pp.ua
Where (path) is the DocumentRoot for that domain
Once you get a cert then configure Apache to use it. See the Mozilla Configurator I previously linked
Restart Apache and HTTPS requests will work (if all done correctly).
Then add a redirect in your VirtualHost for port 80 (HTTP) to port 443 VirtualHost (HTTPS)
3 Likes
certbot: command not found
will it work on Ubuntu 14.04.2?
Probably not. Again, that OS is long since EOL. You really should use something that's supported, especially if you're putting it on the public Internet.
I'd expect you'd have better luck (even though this is a bad idea) with a shell-based client like acme.sh. Its docs explain how to use it.
4 Likes
You will have to check their website https://certbot.eff.org/
I think it might be since that very old system you have still includes snap which is the preferred installation method.
But, if it does not you will have to use one of the other Acme clients like Dan suggested
2 Likes
To get certbot working, move your site to a new server running the latest version of your choice of operating system. Documenting how to move your application to new servers is a great way to ensure business continuity and gives you peace of mind that you can recover your system if anything goes wrong in the future.
As a short term workaround, I would suggest moving your domain to Cloudflare and use their free DNS domain proxying which will provide you with some https support and various security protections that you don't currently have.
2 Likes
Task completed.
installed Cloudflare on the domain aksternet.pp.ua
then I will install Cloudflare on my other domains:
exoo.pp.ua
3xsoft.pp.ua
wispenergo.pp.ua
blog.wispenergo.pp.ua
sklad.wispenergo.pp.ua
Thanks to webprofusion
3 Likes
This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.