C’mon it’s the end of 2016, if you don’t use https you really should now. It’s free, you only need to set it up once, and the rest is automated.
Start with installing the Acme.sh client
You should set up your account with an email address, so you won’t miss the notifications from Let’s encrypt.
The instaler script automatically sets up the cron job on your system, it’s time to configure it.
Enter the following command:
Set the script to run at a random hour and minute to minimize the chance of
Create a directory writable by your webserver. You will use this directory to generate the authentication requests.
In this tutorial we will use
Edit your main config file and add this alias:
Restart apache and you are ready to request your certificate.
Add theses lines to your server block:
Restart Nginx and you are ready to request your certificate.
You can request a certificate for multiple hostnames hosted on the same server with this approach.
Now you have your certificate!
After issuing this command the client will know which script to run after certificate renewal.
Update: The install script was updated with configuration allowing to copy the generated certificates from the default folder to some place else. It is advised by acme.sh to do so, because the default location also contains other important internal files of the script and its structure is subject to change.