HTTPS server (via Let’s Encrypt cert?)

Have a suggestion for "Everything"? Please post it here.
Post Reply
deepdvd
Posts: 33
Joined: Mon Mar 23, 2009 6:35 pm

HTTPS server (via Let’s Encrypt cert?)

Post by deepdvd »

Long-time fan of Everything Search Engine here... It's my favorite application by far.

With Chrome now marking sites insecure when only using HTTP, I'm really hoping we can vote up inclusion of HTTPS for serving Everything Search over the internet. [Confession] I cringe each time I use it over the internet (even though I use a custom port) because I should know better.
https://www.blog.google/products/chrome ... ot-secure/

I'm hoping we can get support for "Let's Encrypt" https://letsencrypt.org/ and make all of our search sites secure.

Until we get this feature, does anyone have an easy solution to making it secure? I suppose I could use an SSH tunnel, but that makes it more difficult for mobile use. What are others using?
void
Developer
Posts: 16735
Joined: Fri Oct 16, 2009 11:31 pm

Re: HTTPS server (via Let’s Encrypt cert?)

Post by void »

SSL support is on my TODO list.

Thanks for the suggestion.
whatUwant
Posts: 2
Joined: Mon Apr 10, 2017 10:23 am

Re: HTTPS server (via Let’s Encrypt cert?)

Post by whatUwant »

deepdvd wrote:Until we get this feature, does anyone have an easy solution to making it secure?
I think you can set up a reverse proxy (e.g. Nginx) and enable SSL there.
deepdvd
Posts: 33
Joined: Mon Mar 23, 2009 6:35 pm

Re: HTTPS server (via Let’s Encrypt cert?)

Post by deepdvd »

For those that want this:

I used this app on Github to get a LetsEncrypt certificate for IIS on Windows. You just install IIS, add in your binding for your external DNS, ensure your firewall/NAT is configured on port 80, and this does the rest to add the certificate and https binding.
https://github.com/PKISharp/win-acme

Then you install URL Rewrite 2 and ARR, enable proxy in ARR, and set up a reverse proxy to the Everything HTTP server's http://localhost:[port] and you'll have it working over https.

I also got the favicon working using the solution here: https://stackoverflow.com/questions/286 ... vs-favicon
donotbugme
Posts: 23
Joined: Mon Oct 16, 2017 10:33 am

Re: HTTPS server (via Let’s Encrypt cert?)

Post by donotbugme »

Setup Let's Encrypt on an Apache server, you can follow these steps..
  • Install Certbot, the official Let's Encrypt client, on your server.
  • Run Certbot to obtain and install the SSL/TLS certificate.
  • Configure Apache to use the obtained certificate and enable HTTPS.
Here is the commands.

Code: Select all

# Step 1: Install Certbot
sudo apt-get update
sudo apt-get install certbot python3-certbot-apache

# Step 2: Obtain and install the certificate
sudo certbot --apache

# Step 3: Configure Apache for HTTPS
# After running the Certbot command, it should automatically configure Apache for HTTPS. You might need to adjust your virtual host configurations if necessary.
Please check additional instructions provided by Certbot during the setup process
One done your Apache server should be configured to use HTTPS with a Let's Encrypt certificate.
Then redirect HTTP to HTTPS using .htaccess,

Code: Select all

RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule ^(.*)$ https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]
Manually test it, Use browser developer tools to inspect network requests and redirects or use any online tool like redirect checker.  This can help you to get detail redirection chain and its status code. 
Post Reply