diff options
Diffstat (limited to 'docs/apache2.md')
| -rw-r--r-- | docs/apache2.md | 16 |
1 files changed, 8 insertions, 8 deletions
diff --git a/docs/apache2.md b/docs/apache2.md index e746a7e..d83eab3 100644 --- a/docs/apache2.md +++ b/docs/apache2.md @@ -35,8 +35,8 @@ Now, edit the following file: `/etc/apache2/sites-available/000-default.conf`, r 1. The `VirtualHost` here instructs apache2 to redirect all **HTTP** traffic that specify an unknown `Host` header be redirected to a specific domain of your choice. Configuring this is not required but highly recommended. ```xml <VirtualHost *:80> - # no domain = go to 4get.ca - RedirectMatch 301 ^(.*)$ https://4get.ca$1 + # no domain = go to 4get.itinerariummentis.org + RedirectMatch 301 ^(.*)$ https://4get.itinerariummentis.org$1 </VirtualHost> ``` @@ -95,7 +95,7 @@ Now, edit the file `/etc/apache2/sites-available/default-ssl.conf`, remove every This ruleset will redirect all clients that specify an unknown `Host` to the domain of our choice. I recommend you uncomment the `ErrorLog` directive while setting things up in case a problem occurs with PHP. Don't worry about the invalid SSL paths, we will generate our certificates later; Just make sure you specify the right domains in there: ```xml <VirtualHost *:443> - RedirectMatch 301 ^(.*)$ https://4get.ca$1 + RedirectMatch 301 ^(.*)$ https://4get.itinerariummentis.org$1 ServerAdmin will@lolcat.ca #ErrorLog ${APACHE_LOG_DIR}/error.log @@ -116,15 +116,15 @@ This ruleset will redirect all clients that specify an unknown `Host` to the dom AddOutputFilterByType DEFLATE text/plain AddOutputFilterByType DEFLATE text/css - SSLCertificateFile /etc/letsencrypt/live/4get.ca/fullchain.pem - SSLCertificateKeyFile /etc/letsencrypt/live/4get.ca/privkey.pem + SSLCertificateFile /etc/letsencrypt/live/4get.itinerariummentis.org/fullchain.pem + SSLCertificateKeyFile /etc/letsencrypt/live/4get.itinerariummentis.org/privkey.pem </VirtualHost> ``` -This ruleset tells apache2 where 4get is located (`/var/www/4get`), ensures that `4get.ca/settings` resolves to `4get.ca/settings.php` internally and that we deny access to `/data/*`, which may contain files you might want to keep private. +This ruleset tells apache2 where 4get is located (`/var/www/4get`), ensures that `4get.itinerariummentis.org/settings` resolves to `4get.itinerariummentis.org/settings.php` internally and that we deny access to `/data/*`, which may contain files you might want to keep private. ```xml <VirtualHost *:443> - ServerName 4get.ca + ServerName 4get.itinerariummentis.org DocumentRoot /var/www/4get @@ -201,7 +201,7 @@ service apache2 stop Now, run `certbot`, and specify all of your domains by prepending `-d` every time. Make sure the first domain you specify is your main domain, and the same domain you specified in the configuration above! We use ECDSA encryption here as it's better than RSA. ```sh -certbot certonly --standalone --key-type ecdsa -d 4get.ca -d www.4get.ca -d lolcat.ca -d www.lolcat.ca +certbot certonly --standalone --key-type ecdsa -d 4get.itinerariummentis.org -d www.4get.itinerariummentis.org -d lolcat.ca -d www.lolcat.ca ``` Certbot should ask you a few questions, just play along. At the end of the setup, certbot should tell you about the location of the certificates. Double check to make sure they correspond to the paths we specified in `default-ssl.conf`. Your certificates should now update every 2-3 months automatically. |