LINUX/WWW - add local SSL cert (trusted) / lecture notes 2019/01

 

 

(local) SSL-ZERTIFIKAT/ ubuntu / mkcert
local dev server

 

 

a2enmod ssl

a2ensite default-ssl

systemctl reload apache2

 

Um die "Vetrauen Sie Seite..." für lokale Entwicklungsumgebungen zu umgehen ...

 

apt install libnss3-tools

apt install linuxbrew-wrapper

 

 

brew install mkcert

/home/linuxbrew/.linuxbrew/bin/mkcert -install

 

certs für "locals"

/home/linuxbrew/.linuxbrew/bin/mkcert wp01-localhost.com "*.wp01-localhost.com" 192.168.8.109 localhost 127.0.0.1 ::1

 

 

cp /root/wp01-localhost.com+5-key.pem /etc/ssl/private/

cp /root/wp01-localhost.com+5.pem /etc/ssl/certs/

 

 

vi /etc/apache2/sites-available/default-ssl.conf

 

 

SSLCertificateFile /etc/ssl/certs/wp01-localhost.com+5.pem
SSLCertificateKeyFile /etc/ssl/private/wp01-localhost.com+5-key.pem

 

 

systemctl restart apache2

 

Cert-Abfrage via openssl s_client -showcerts -connect localhost:443 -servername 127.0.0.1

 

 

 

Cert-Anfrage per Java

 

apt install openjdk-11-jre-headless

 

keytool -printcert -sslserver 192.168.8.109:443