Author Topic: HTTPS access with Let's Encrypt?  (Read 3960 times)

0 Members and 1 Guest are viewing this topic.

Offline ngld

  • Administrator
  • 29
  • Knossos dev
Re: HTTPS access with Let's Encrypt?
Actually no.  CF, up until this point, is used only for the DNS and anti-DDOS measures.  The HTTPS rewrite stuff is separate and isn't the main thing it was set up in the beginning.  I can't see us dropping CF full stop unless they start charging for the above mentioned services.
Yes, but I wasn't talking about the HTTPS rewrite stuff. I was talking about HTTPS support in general.
If you want to use your own certificate and don't want to pay CF for HTTPS support, you can't use their HTTP proxy. AFAIK CF doesn't support TCP proxying so the end result would be that you'd have to drop CF in that case. I just don't see any way around that. Feel free to correct me if I'm wrong.

Again, it's a temporary fix that will keep the bulk of the site encrypted as long as https is used in the URL
Thanks for fixing this!

 

Offline chief1983

  • Still lacks a custom title
  • 212
  • ⬇️⬆️⬅️⬅️🅰➡️⬇️
    • Minecraft
    • Skype
    • Steam
    • Twitter
    • Fate of the Galaxy
Re: HTTPS access with Let's Encrypt?
@goober not sure if you should use the //domain thing or not, but using relative links as suggested, would work as well, as long as all the stuff lives at the same domain.
Fate of the Galaxy - Now Hiring!  Apply within | Diaspora | SCP Home | Collada Importer for PCS2
Karajorma's 'How to report bugs' | Mantis
#freespace | #scp-swc | #diaspora | #SCP | #hard-light on EsperNet

"You may not sell or otherwise commercially exploit the source or things you created based on the source." -- Excerpt from FSO license, for reference

Nuclear1:  Jesus Christ zack you're a little too hamyurger for HLP right now...
iamzack:  i dont have hamynerge i just want ptatoc hips D:
redsniper:  Platonic hips?!
iamzack:  lays

 

Offline Goober5000

  • HLP Loremaster
  • 214
    • Goober5000 Productions
Re: HTTPS access with Let's Encrypt?
There's a rewrite rule that will redirect all http://hard-light.net traffic to http://www.hard-light.net.  There's another one that will redirect www.hard-light.net/wiki to wiki.hard-light.net, and a third that will redirect www.hard-light.net/mantis to mantis.hard-light.net.  Are any of these pertinent to the current problem?


Actually, I did find one more reference, which I did correct, but it didn't solve anything.

Which reference was this?

 

Offline rev_posix

  • Administrator
  • 213
  • I have the password to your shell account...
    • Trials and Tribulations
Re: HTTPS access with Let's Encrypt?
There's a rewrite rule that will redirect all http://hard-light.net traffic to http://www.hard-light.net.  There's another one that will redirect www.hard-light.net/wiki to wiki.hard-light.net, and a third that will redirect www.hard-light.net/mantis to mantis.hard-light.net.  Are any of these pertinent to the current problem?


Actually, I did find one more reference, which I did correct, but it didn't solve anything.

Which reference was this?
I honestly don't recall right now, I did a grep of the CSS file for hard-light and found one line that had http in it, and changed it to https
--
POSIX is fine, as is Rev or RP

"Although generally it is considered a no no to disagree with a mod since it's pretty much equivalent to kicking an unpaid janitor in the nuts while he's busy cleaning up somebody elses vomit and then telling them how bad they are at cleaning it up cause you can smell it down the hall." - Dennis, Home Improvement Moderator @ DSL Reports

"wow, some people are thick and clearly can't think for themselves - the solution is to remove warning labels from poisons."