Lets Encrypt – Securing your Quickbox.

This section will cover installing your Lets Encrypt certificate(s).

apt-get -y install git git clone https://github.com/letsencrypt/letsencrypt /opt/letsencrypt cd /opt/letsencrypt

Next we want to secure our domain,

./letsencrypt-auto --apache -d your_domain.com

Follow the instructions, enter your email and agree to the terms. We’ll also be revisiting this again later when we want to secure the subdomain for Plex. It’s an absolute necessity for your DNS records to be setup correctly, otherwise Lets Encrypt will not issue the certificates. You may need to wait for these records to propagate before you’ll be able to successfully get the Lets Encrypt certs setup.

Select the appropriate number [1-2] then [enter] (press ‘c’ to cancel): 2

Select 2 when you get to this option as we want absolutely everything to be run through SSL, no exceptions.

Next, we’re going to setup a cron to renew these certs automatically. crontab -e and create a new entry with the following,

30 2 * * 1 /opt/letsencrypt/letsencrypt-auto renew >> /var/log/le-renew.log

Save and exit. We’ve one last thing to do and that’s to update the document root.

sed -i "s|DocumentRoot /var/www/html|DocumentRoot /srv/rutorrent/home/|g" /etc/apache2/sites-enabled/000-default-le-ssl.conf && service apache2 restart

Browse to your domain.com now, enter the credentials for ‘basic auth’ and you should be now logged into quickbox with your own brand new Lets Encrypt Certificate.

Next up, [Sonarr – Installation and configuration]