We are happy to announce that Vesta is back under active development as of 25 February 2024. We are working on v1 candidate and expect to engage more with the community over the coming months. We are committed to open source, and we encourage contributors to help us build the future of Vesta.
SSL certificate and updates
SSL certificate and updates
hello everyone.
I just installing a comodo certificate by changing certificate.key and certificate.crt in
my question is:
1. is this the correct way of doing it?
2. if I'm updating vesta, will my changes will be overwritten?
thank you!
I just installing a comodo certificate by changing certificate.key and certificate.crt in
Code: Select all
/usr/local/vesta/ssl/
1. is this the correct way of doing it?
2. if I'm updating vesta, will my changes will be overwritten?
thank you!
Re: SSL certificate and updates
1) yep.
2) It won't be over written
PS, don't forget to service vesta restart.
2) It won't be over written
PS, don't forget to service vesta restart.
Re: SSL certificate and updates
yes, I restarted the services, works like a charm!ivanh wrote:1) yep.
2) It won't be over written
PS, don't forget to service vesta restart.
#EDIT
its only works on VESTACP login (https://mydomain.com:8083), I tried to install the cert to my main domain but got various error, tried to solve it by rearrange the crt (described on this thread: viewtopic.php?f=11&t=4896) but none of those works, so I tried to make a new snginx.conf template and changing the .pem to .crt and this resulting the nginx failed to start:
Code: Select all
nginx: [emerg] SSL_CTX_use_PrivateKey_file("/home/admin/conf/web/ssl.mydomain.com.key") failed (SSL: error:0906406D:PEM routines:PEM_def_callback:problems getting password error:0906A068:PEM routines:PEM_do_header:bad password read error:140B0009:SSL routines:SSL_CTX_use_PrivateKey_file:PEM lib)
nginx: configuration file /etc/nginx/nginx.conf test failed
thanks.
##EDIT
this solve the problem:
http://stackoverflow.com/questions/1810 ... -nginx-ssl
remove the passphrase:
Code: Select all
openssl rsa -in original.key -out unencripted.key