Synchronet v3.19b-Win32 (install) has been released (Jan-2022).

You can donate to the Synchronet project using PayPal.

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision
Previous revision
module:letsyncrypt [2020/11/01 15:18] – [LetSyncrypt] Add clarity around this module's purpose. digital manmodule:letsyncrypt [2024/05/24 13:14] (current) – [Configure] Fix the link text (back to how it was) digital man
Line 1: Line 1:
-====== LetSyncrypt ======+====== LetSyncrypt - Let's Encrypt Client ======
  
 LetSyncrypt is a [[https://letsencrypt.org/|Let's Encrypt]] client for Synchronet which uses the ACMEv2 protocol. LetSyncrypt is a [[https://letsencrypt.org/|Let's Encrypt]] client for Synchronet which uses the ACMEv2 protocol.
Line 6: Line 6:
  
 If you don't want to use the default generated and self-signed SSL/TLS certificate (''ctrl/ssl.cert''), use of this module is the solution. If you don't want to use the default generated and self-signed SSL/TLS certificate (''ctrl/ssl.cert''), use of this module is the solution.
 +
 +**NOTE:** This method of auto-certificate generation/renewal requires inbound TCP Port 80 to be open to the internet to allow Let's Encrypt servers to verify keys via ACMEv2 protocol.
  
 ===== Install ===== ===== Install =====
Line 32: Line 34:
 ===== Configure ===== ===== Configure =====
  
-LetSyncrypt is configured via the ''[[dir:ctrl]]/[[http://cvs.synchro.net/cgi-bin/viewcvs.cgi/ctrl/letsyncrypt.ini|letsyncrypt.ini]]'' file.+LetSyncrypt is configured via the ''[[dir:ctrl]]/[[https://gitlab.synchro.net/main/sbbs/-/blob/master/ctrl/letsyncrypt.ini?ref_type=heads|letsyncrypt.ini]]'' file.
  
 You must indicate that you agree to the Let's Encrypt Terms of Service by setting ''TOSAgreed = true'' in this file. You must indicate that you agree to the Let's Encrypt Terms of Service by setting ''TOSAgreed = true'' in this file.
  
 You can specify the ACMEv2 endpoint using the ''Host'' and ''Directory'' keys in the [[config:ini_files#root_section|root section]] of this file.  ''Host'' is the domain name of the ACMEv2 endpoint, and ''Directory'' is appended to it to generate the URL that is fetched for the Directory object.   You can specify the ACMEv2 endpoint using the ''Host'' and ''Directory'' keys in the [[config:ini_files#root_section|root section]] of this file.  ''Host'' is the domain name of the ACMEv2 endpoint, and ''Directory'' is appended to it to generate the URL that is fetched for the Directory object.  
 +
 +You may change the email address used for the account with the SysopEmail key (defaults to to the sysop email address on the BBS)
  
 <file ini> <file ini>
Line 43: Line 47:
 TOSAgreed = true TOSAgreed = true
 GroupReadableKeyFile = false GroupReadableKeyFile = false
 +SysopEmail = sysop@example.com
 </file> </file>
  
Line 55: Line 60:
 <file ini> <file ini>
 [Domains] [Domains]
 +yourbbs.synchro.net = /sbbs/webv4/root
 nix.synchro.net = /sbbs/web/root nix.synchro.net = /sbbs/web/root
 home.bbsdev.net = /sbbs/web/root home.bbsdev.net = /sbbs/web/root
Line 61: Line 67:
 </file> </file>
  
-This example has four domains (nix.synchro.net, home.bbsdev.net, gallery.bbsdev.net, and pics.bbsdev.net).  The last two are virtual hosts, so have their web root as a subdirectory of the main [[server:web]] root.+This example has five domains (yourbbs.synchro.net, nix.synchro.net, home.bbsdev.net, gallery.bbsdev.net, and pics.bbsdev.net).  The last two are virtual hosts, so have their web root as a subdirectory of the main [[server:web]] root.
  
 ===== Running Manually ===== ===== Running Manually =====
Line 77: Line 83:
 ===== See Also ===== ===== See Also =====
   * [[:module:|Modules]]   * [[:module:|Modules]]
 +  * [[certtool|Synchronet Certificate Tool]]
  
-{{tag>tls ssl cert https crypt}}+{{tag>tls ssl cert https crypt jsutil}}