“Mozilla 将封杀沃通和 StartSSL 一年内新签发的所有证书”还有什么可以申请的免费 ssl 证书?
waterboy · 2016-09-30 13:11:34 +08:00 · 1941 次点击这是一个创建于 2967 天前的主题,其中的信息可能已经有所发展或是发生改变。
Let ’ sEncryptCA 三个月一次,太麻烦,并且好多旧系统不支持,还有类似于 wosign 、 startssl 这种一年的免费证书吗
5 条回复 • 2016-11-02 11:20:26 +08:00
 |
1
29EtwXn6t5wgM3fD 2016-09-30 14:22:59 +08:00 via Android
腾讯
|
 |
2
ITOutsider 2016-09-30 15:09:13 +08:00 via iPhone
免费的嫌烦
收费的嫌贵 |
 |
3
shoaly 2016-09-30 18:23:39 +08:00
最近因为一个事件, 已经全面转向 letsencrypt.
开始一直没用也是担心 3 个月的月经, 实用之后 发现还好 |
 |
4
caola 2016-10-08 16:58:59 +08:00
@htm123 免费一年的,还是野卡的(泛域名) https://assl.loovit.net
|
 |
5
zqcolor 2016-11-02 11:20:26 +08:00
let's encrypt 可以在 crontab 里面设置每月自动更新,不用手动再申请
https://github.com/diafygi/acme-tiny Step 6: Setup an auto-renew cronjob Congrats! Your website is now using https! Unfortunately, Let's Encrypt certificates only last for 90 days, so you need to renew them often. No worries! It's automated! Just make a bash script and add it to your crontab (see below for example script). Example of a renew_cert.sh: ``` #!/usr/bin/sh python /path/to/acme_tiny.py --account-key /path/to/account.key --csr /path/to/domain.csr --acme-dir /var/www/challenges/ > /tmp/signed.crt || exit wget -O - https://letsencrypt.org/certs/lets-encrypt-x3-cross-signed.pem > intermediate.pem cat /tmp/signed.crt intermediate.pem > /path/to/chained.pem service nginx reload ``` ``` #example line in your crontab (runs once per month) 0 0 1 * * /path/to/renew_cert.sh 2>> /var/log/acme_tiny.log ``` |
Select Language