Secure Certs!

The benefits of contributing to some open source projects:

  1. Finding new tools to make your existing projects even better
  2. #1 is sufficient.

I was playing around with a piece of software that I was thinking of deploying in my workplace. The problem was: I couldn't get it to install!

I was getting the 'invalid certificate' errors as my company runs some tracking and intercepts and resigns all our traffic with a self-signed cert. Which to most people outside of an enterprise would mean their web traffic was compromised by a man in the middle attack of sorts.

While scouring for a way to get PHP's composer to install and just ignore the certs much like Node.js' process.env.NODE_TLS_REJECT_UNAUTHORIZED = "0"; environment variable, I stumbled upon a StackOverflow issue discussing a simple fix.

Just use LetsEncrypt for your certificate management

Huh?

Yep - https://letsencrypt.org/

Follow a few links and they'll send you off to https://certbot.eff.org/.

This gives you super easy instructions to add free SSL certs to your *nix operating system with instructions on how to update your certs when they start running out.

Needless to say I will be donating some cash to these projects. Fantastic ways to help keep the internet safe and secure for those hobbyists such as myself with my little self-hosted blog.

That's why my site is now awesomely https'd!

Check it out for your projects and if you appreciate them as much as I do, Toss them some donations!

Until later!