EFF HTTPS
643 views
Skip to first unread message
Masakazu Nakano
Dec 11, 2015, 9:20:43 AM12/11/15
to BigBlueButton-Setup
HI there
Does anyone tried to encrypt by this service?
it seems also to use for nginx.
mack
Calvin Walton
Dec 14, 2015, 2:44:28 PM12/14/15
to bigbluebu...@googlegroups.com
On Fri, 2015-12-11 at 06:20 -0800, Masakazu Nakano wrote:
> HI there
>
> Does anyone tried to encrypt by this service?
>
> https://letsencrypt.org
>
Hi, I've done some initial work to test it out - it seems like a great
> HI there
>
> Does anyone tried to encrypt by this service?
>
> https://letsencrypt.org
>
service - free and easy to use! The server
https://demo.bigbluebutton.org/
is now using a certificate from Let's Encrypt as a trial.
I plan to write up a how-to document at some point, but here's some
quick hints:
The built-in nginx support does not work with BigBlueButton, so you
will have to do manual configuration.
To generate a certificate on a BigBlueButton machine, use the following
command (replace yourserver.example.com with your own dns name):
./letsencrypt-auto --webroot -w /var/www/bigbluebutton-default/ \
-d yourserver.example.com certonly
Follow the instructions at
http://docs.bigbluebutton.org/install/install.html#configure-nginx-http
but start at the line "In addition, we'll generate a set of 2048..."
In the file /etc/nginx/sites-available/bigbluebutton, use the following
paths for certificates:
ssl_certificate /etc/letsencrypt/live/yourserver.example.com/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/yourserver.example.com/privkey.pem;
Follow the instructions for the other parameters.
Note that the Let's Encrypt certificates only last for 90 days, but you
can renew them for free. To renew, re-run the same "letsencrypt"
command that you used to generate the certs, then run
/etc/init.d/nginx reload
--
Calvin Walton <calvin...@kepstin.ca>
BigBlueButton Developer
Masakazu Nakano
Dec 17, 2015, 3:24:07 AM12/17/15
to BigBlueButton-Setup
Hi Calvin
thank you for your trial.
thank you for your trial.
let me try it too. :)
mack
Michael
Apr 14, 2016, 2:14:35 PM4/14/16
to BigBlueButton-Setup
Hi! Looks like LetsEncryps is out of beta. Is this docs are actual?
пятница, 11 декабря 2015 г., 17:20:43 UTC+3 пользователь Masakazu Nakano написал:
пятница, 11 декабря 2015 г., 17:20:43 UTC+3 пользователь Masakazu Nakano написал:
Fred Dixon
Apr 14, 2016, 3:54:43 PM4/14/16
to bigbluebu...@googlegroups.com
Hi Michael,
We'll be updating the install documentation on using LetsEncrypt.
For the moment, the instructions in Calvin's post are applicable.
Regards,... Fred
--
You received this message because you are subscribed to the Google Groups "BigBlueButton-Setup" group.
To unsubscribe from this group and stop receiving emails from it, send an email to bigbluebutton-s...@googlegroups.com.
To post to this group, send email to bigbluebu...@googlegroups.com.
Visit this group at https://groups.google.com/group/bigbluebutton-setup.
BigBlueButton Developer
@bigbluebutton
Michael
Apr 15, 2016, 4:45:57 AM4/15/16
to BigBlueButton-Setup
Hi Fred! Thx for your response.
Will be waiting for official docs of using LetsEncrypt in BBB then (docs for future 1.0 stable release, I presume?) It will be nice. since Chrome blocking WebRTC (over http) microphone in new versions.
~M
четверг, 14 апреля 2016 г., 22:54:43 UTC+3 пользователь Fred Dixon написал:
Will be waiting for official docs of using LetsEncrypt in BBB then (docs for future 1.0 stable release, I presume?) It will be nice. since Chrome blocking WebRTC (over http) microphone in new versions.
~M
четверг, 14 апреля 2016 г., 22:54:43 UTC+3 пользователь Fred Dixon написал:
Hi Michael,We'll be updating the install documentation on using LetsEncrypt.For the moment, the instructions in Calvin's post are applicable.Regards,... Fred
On Thu, Apr 14, 2016 at 2:14 PM, Michael <darkfess...@gmail.com> wrote:Hi! Looks like LetsEncryps is out of beta. Is this docs are actual?--
пятница, 11 декабря 2015 г., 17:20:43 UTC+3 пользователь Masakazu Nakano написал:HI thereDoes anyone tried to encrypt by this service?it seems also to use for nginx.mack
Fred Dixon
Apr 15, 2016, 6:53:38 AM4/15/16
to bigbluebu...@googlegroups.com
Hi Michael,
We'll be updating the 1.0 install docs shortly with the steps.
For the moment, we used the steps at
to setup
with a SSL. Here are the details on the certificate
Regards,... Fred
--
You received this message because you are subscribed to the Google Groups "BigBlueButton-Setup" group.
To unsubscribe from this group and stop receiving emails from it, send an email to bigbluebutton-s...@googlegroups.com.
To post to this group, send email to bigbluebu...@googlegroups.com.
Visit this group at https://groups.google.com/group/bigbluebutton-setup.
For more options, visit https://groups.google.com/d/optout.
Michael
Apr 15, 2016, 7:05:29 AM4/15/16
to BigBlueButton-Setup
Thank you very much!
пятница, 15 апреля 2016 г., 13:53:38 UTC+3 пользователь Fred Dixon написал:
пятница, 15 апреля 2016 г., 13:53:38 UTC+3 пользователь Fred Dixon написал:
er...@utmail.net
Jul 18, 2016, 3:52:48 PM7/18/16
to BigBlueButton-Setup
Quick question:
Is ssl_dhparam /etc/nginx/ssl/dhp-2048.pem; supposed to stay the same? Not using the same path as the others?
Is ssl_dhparam /etc/nginx/ssl/dhp-2048.pem; supposed to stay the same? Not using the same path as the others?
Calvin Walton
Jul 21, 2016, 2:23:48 PM7/21/16
to bigbluebu...@googlegroups.com
On Mon, 2016-07-18 at 12:52 -0700, er...@utmail.net wrote:
> Quick question:
> Is ssl_dhparam /etc/nginx/ssl/dhp-2048.pem; supposed to stay the
> same?
> Not using the same path as the others?
Yes. Only change the two lines that I explicitly mentioned.
> Quick question:
> Is ssl_dhparam /etc/nginx/ssl/dhp-2048.pem; supposed to stay the
> same?
> Not using the same path as the others?
Calvin.
Reply all
Reply to author
Forward
0 new messages