💾 Archived View for helion.cybersavior.dev › newcert.gmi captured on 2023-04-26 at 13:35:08. Gemini links have been rewritten to link to archived content

View Raw

More Information

⬅️ Previous capture (2023-04-19)

➡️ Next capture (2024-06-20)

-=-=-=-=-=-=-

host

meta

tags

documentation - how do things even operate?

plan9 - we all get our own private namespace. Everything is a file.

safe - probably not harmful. Maybe.

technology - bits and such

white - chaos void, potential, purity, vitrue, blank

NEWCERT

Process we use for renewing certificates

process compiled from the excellent guides below.this process is predecated on already having done some legwork on the initial setup(from the guides below) which is not repeated as it's no longer needed.

First on linux machine run:

Certbot certonly --manual -d Cybersavior.dev -d *.Cybersavior.dev

Follow the certification process until the challenge requiring adding to .wellknown in http server.

Drawterm into Temuorin

Reboot Temuorin to take ip/httpd/httpd down

That this works it not ideal, it should be setup as a service, but I have had issues making that work and in this specific case it's good, because the challenge requires http, but .dev domains require https normally so I don't run http at all normally. Killing nobody processes is annoying so reboot is easier in my opinion

Once Temuorin comes up run

Ip/httpd/httpd then add the challenge file to /usr/www

Finish challenge process after verifying it can be wget-ed in linux

Open a sudo drawterm into myugii

Cd /sys/lib/tls/

Cp /mnt/term/etc/letsencrypt/live/Cybersavior.dev/privkey.pem ./

Cp /mnt/term/etc/letsencrypt/live/Cybersavior.dev/fullchain.pem ./cert

Rm key

Auth/pemdecode 'PRIVATE KEY' privkey.pem | auth/asn12rsa -t 'service=tls role=client' > key

Rm privkey.pem

Chmod 400 key

Reboot (i don't think it's strictly necessary, but I wanna make sure the new key is being used and this is all working proper)

We no longer need the sudo drawterm for myugii

Then back to Temuorin to start httpd

Ip/httpd/httpd -c /sys/lib/tls/cert -C /sys/lib/tls/cert

.

additional links

plan9 lets encrypt guide (rc-httpd) -

9grid https guide (httpd) -

incoming references

INDEX - hierachical view of every page as relates to its host.

META - regarding this place, it's utility and construction.