Page 1 of 1

HTTPS server (via Let’s Encrypt cert?)

Posted: Tue Jul 24, 2018 9:11 pm
by deepdvd
Long-time fan of Everything Search Engine here... It's my favorite application by far.

With Chrome now marking sites insecure when only using HTTP, I'm really hoping we can vote up inclusion of HTTPS for serving Everything Search over the internet. [Confession] I cringe each time I use it over the internet (even though I use a custom port) because I should know better.
https://www.blog.google/products/chrome ... ot-secure/

I'm hoping we can get support for "Let's Encrypt" https://letsencrypt.org/ and make all of our search sites secure.

Until we get this feature, does anyone have an easy solution to making it secure? I suppose I could use an SSH tunnel, but that makes it more difficult for mobile use. What are others using?

Re: HTTPS server (via Let’s Encrypt cert?)

Posted: Thu Jul 26, 2018 10:58 am
by void
SSL support is on my TODO list.

Thanks for the suggestion.

Re: HTTPS server (via Let’s Encrypt cert?)

Posted: Sun Aug 26, 2018 8:27 am
by whatUwant
deepdvd wrote:Until we get this feature, does anyone have an easy solution to making it secure?
I think you can set up a reverse proxy (e.g. Nginx) and enable SSL there.

Re: HTTPS server (via Let’s Encrypt cert?)

Posted: Tue Jun 25, 2019 11:17 pm
by deepdvd
For those that want this:

I used this app on Github to get a LetsEncrypt certificate for IIS on Windows. You just install IIS, add in your binding for your external DNS, ensure your firewall/NAT is configured on port 80, and this does the rest to add the certificate and https binding.
https://github.com/PKISharp/win-acme

Then you install URL Rewrite 2 and ARR, enable proxy in ARR, and set up a reverse proxy to the Everything HTTP server's http://localhost:[port] and you'll have it working over https.

I also got the favicon working using the solution here: https://stackoverflow.com/questions/286 ... vs-favicon

Re: HTTPS server (via Let’s Encrypt cert?)

Posted: Wed Oct 18, 2023 2:49 pm
by donotbugme
Setup Let's Encrypt on an Apache server, you can follow these steps..
  • Install Certbot, the official Let's Encrypt client, on your server.
  • Run Certbot to obtain and install the SSL/TLS certificate.
  • Configure Apache to use the obtained certificate and enable HTTPS.
Here is the commands.

Code: Select all

# Step 1: Install Certbot
sudo apt-get update
sudo apt-get install certbot python3-certbot-apache

# Step 2: Obtain and install the certificate
sudo certbot --apache

# Step 3: Configure Apache for HTTPS
# After running the Certbot command, it should automatically configure Apache for HTTPS. You might need to adjust your virtual host configurations if necessary.
Please check additional instructions provided by Certbot during the setup process
One done your Apache server should be configured to use HTTPS with a Let's Encrypt certificate.
Then redirect HTTP to HTTPS using .htaccess,

Code: Select all

RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule ^(.*)$ https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]
Manually test it, Use browser developer tools to inspect network requests and redirects or use any online tool like redirect checker.  This can help you to get detail redirection chain and its status code.