Let’s Encrypt Zertifikat mit Elliptic Curve

Exported from Notepad++
Elliptic Curve certificate info: lynx https://dev.to/benjaminblack/obtaining-an-elliptic-curve-dsa-certificate-with-lets-encrypt-51bc openssl ecparam -list_curves openssl ecparam -genkey -name secp521r1 -out privkey.pem openssl ec -in privkey.pem -noout -text openssl pkey -in privkey.pem -text openssl req -new -key privkey.pem -out csr.pem You are about to be asked to enter information that will be incorporated into your certificate request. What you are about to enter is what is called a Distinguished Name or a DN. There are quite a few fields but you can leave some blank For some fields there will be a default value, If you enter ‘.’, the field will be left blank. —– Country Name (2 letter code) [AU]:AA State or Province Name (full name) [Some-State]:BB Locality Name (eg, city) []:CC Organization Name (eg, company) [Internet Widgits Pty Ltd]:DD Organizational Unit Name (eg, section) []:EE Common Name (e.g. server FQDN or YOUR name) []:mooreblog.ddns.net Email Address []: Please enter the following ‘extra’ attributes to be sent with your certificate request A challenge password []: An optional company name []: openssl req -in csr.pem -noout -text -verify wget https://dl.eff.org/certbot-auto chown root certbot-auto chmod 0755 certbot-auto ./certbot-auto certonly –manual –domain “mooreblog.ddns.net” –domain “mooreblog.ddns.net” –csr csr.pem file auf Webserver erstellen mit Inhalt nach Angaben von let`s encrypt ls -al 000* -rw-r–r– 1 root root 1684 Dec 3 14:55 0000_cert.pem #Zertifikat -rw-r–r– 1 root root 1647 Dec 3 14:55 0000_chain.pem #root und Intermediate Zertifkat -rw-r–r– 1 root root 3331 Dec 3 14:55 0001_chain.pem #Zertifikat + Intermediate: openssl x509 -in 0000_cert.pem -text -noout openssl x509 -in 0000_chain.pem -text -noout openssl x509 -in 0001_chain.pem -text -noout vi /usr/local/apache2/conf/httpd.conf -> SSLCertificateFile /usr/local/apache2/conf/ssl/mooreblog.ddns.net/0001_chain.pem SSLCertificateKeyFile /usr/local/apache2/conf/ssl/mooreblog.ddns.net/privkey.pem openssl s_client -connect mooreblog.ddns.net:443

Post Revisions: