CS338 Computer Security
Friday, 24 October 2024

+ Questions

+ Next up
- Host detection
- Port scanning and service detection
- Attacking misconfigured web servers
- Reverse shells


+ Getting a certificate
- EFF
- Let's Encrypt
- certbot, and what it does
    ...
- What does Let's Encrypt guarantee via its signature on certificate?
    The entity requesting the cert has control over the domain's
        website at the time certbot issues its request

+ Getting a certificate: let's try it
- Add a subdomain pointing to the desired server
- Add a website on the server
    - website files
    - nginx server config, just port 80
- Create the cert
    
- Where do the cert and the private key live?


----
sudo certbot --nginx -d example.com
sudo ls -l /etc/letsencrypt/live/example.com
sudo cat /etc/nginx/snippets/ssl-intrigue.jeffondich.com.conf

/etc/nginx/sites-available/example.com