Yesterday, I was bored and had been contemplating setting up one of my public web sites to use an SSL certificate.
While most business websites use SSL certificates, SSL certs aren't really mandatory for use in just serving web content for reading purposes. I've been using Apache to serve web pages a LONG time and never felt the need to enable HTTPS, as it wasn't required. That changed when I found that I wanted my website to be more noticeable within search engine results. To place higher within search engine results, HTTPS is required to be used on the web server that is serving the content.
As I host my own server, my options were to set up my own SSL certificate or to buy an SSL certificate for use with my server. I decided to set up and deploy my own.
I used this link's instructions (I used CertBot, which uses Let's Encrypt, which I'll reference as LE) to set everything up. Keep in mind that I"m using Ubuntu 25.10 to host my server, using Linode as a server.
After I built the certificates, I had a difficult time determining how to leverage them. I initially tried using a WordPress plugin to import the certificate, but I tried like 5 different plugins and neither worked. I then pivoted and tried a different method - I'm running Apache to serve Wordpress, so I set up the Apache config file to use HTTPS and pointed Apache to the LE certs. I then used an SSL checker to check that everything was working. It was.
Afterward, I then set up a cron job to renew the certs automatically.
Now, I when I check the browser for indications that the website is using SSL, there's no lock icon that I can see, but I researched and saw that I also had to ensure the website's prior content wasn't using HTTP links to intneral server content, so I used some Wordpress tools to search and change HTTP links pointing to my web server to use HTTPS. I also saw that a lot of my plugins and themes are using HTTP links that that's supposed to be a no-no for HTTPS compliance - I can't control how plugin providers construct their plugins, so I'm not sure what to do with that.
I think I'm going to do with with my other domain, as well (unixfool.us).
Eventually, I plan to replace my Wordpress website with a docker instance. I'd need to research how to use SSL certs within a docker compose YML file. I'm thinking it should be pretty straight-forward. The only thing I can think of that might be an issue is the automatic renewal bit (the bit where I added a cron job to renew the certificate).
No comments:
Post a Comment