Web client & Security

Getting Started With AGX.509 SSL

LET'S ANALYSE THE GENERATED PUBLIC KEY

USE OPEN SSL TO GENERATE ACCOUNT KEY PAIR:

MAKE AN ACCOUNT PRIVATE KEY USING :
openssl genrsa 4096 > account.key
PRINT YOUR KEY ON SHELL:
openssl rsa -in account.key -pubout
LET'S PASTE THE PUBLIC KEY INTO THE BOX.

YOUR PUBLIC KEY:

EXPLAIN ABOUT YOUR DOMAIN'S

CREATE YOUR CERTIFICATE SIGNING REQUEST WITH:

IF YOU DO NOT HAVE ANY TLS PRIVATE KEY:
openssl genrsa 4096 > domain.key

MAKE CSR FOR THE DOMAINS YOU WANT TO USE:
Linux:

#change "/etc/ssl/openssl.cnf" as needed:
#  Debian: /etc/ssl/openssl.cnf
#  RHEL and CentOS: /etc/pki/tls/openssl.cnf
#  Mac OSX: /System/Library/OpenSSL/openssl.cnf

openssl req -new -sha256 -key domain.key -subj "/" \
  -reqexts SAN -config <(cat /etc/ssl/openssl.cnf \
  <(printf "\n[SAN]\nsubjectAltName=DNS:athuljith.com,DNS:www.athuljith.com"))

LET'S PASTE THE CSR INTO THE BOX.

CERTIFICATE SIGNING REQUEST:

GETTING START WITH SIGNATURE GENERATION

VERIFY YOUR DOMAIN NAME'S WITH " AGX.509 "

Your Domain: foobar.com

GENERATE NEEDED SIGNATURES YOU WANT:

LET'S GO TO THE ACCOUNT.KEY PATH WHERE YOU SAVED
COPY AND PASTE EACH COMMANDS
WE NEED THE HEX-CODED OUTPUT TO BE PASTED HERE.

RUN THIS HEX-CODE GENERATOR IN YOUR SHELL:

Option 1 - python server Option 2 - file-based

LET'S SERVE THE RESPONSE WITH YOUR DOMAIN:

SUDO PERMISSION NEEDED ON SSH ACCESS NOW:
ssh ubuntu@foobar.com
PORT 80 RUNNING WEBSERVER SHOULD BE STOP NOW.
sudo service nginx stop <-- example for nginx

sudo apachectl -k graceful-stop <-- example for apache
LET'S COPY AND PASTE THE COMMAND IN YOUR TERMINAL
THIS LINK WILL HELP YOU TO VERIFY YOUR PATH ON DOMAIN:
CLICK ON THE FINAL BUTTON BELOW

LET'S RUN THIS ON foobar.com's SERVER:

LET'S UPLOAD THE FILE WITH YOUR DOMAIN:

SSH ACCESS NEEDED WITH SUDO PERMISSIONS:
```
ssh ubuntu@foobar.com
```
LET'S MAKE THE ".well-known/acme-challenge/" DIRECTORY:
```
mkdir -p /path/to/www/.well-known/acme-challenge/
```
WEB SERVERS CONFIG SHOULD CONTAIN THAT STATIC FOLDER:
```
server {...
```
MAKE A FILE PATH INCLUDE NEEDED CONTENTS:
```
echo ...
```
LET'S MAKE SURE THAT YOUR UPLOAD WORKS WELL:
CLICK ON THE FINAL BUTTON WITH THE PYTHON SERVER ABOVE IF THE FILE BASED CREATED ONECE.

ON THIS URL LINK:

SHARE THIS CONTENT:

LET'S INSTALL YOUR SSL CERTIFICATE

WELL DONE ... AFTER ALL SUCCESFULL COMMENTS AND VERIFICATION YOU HAVE RECEIVED AND " OLYNX SSL CERTIFICATE " LET'S UPLOAD AND SECURE YOUR WEBSITE WITH HIGHLY SECURED SSL CERTIFICATE .

SIGNED CERFTIFICATE FROM " OLYNX SSL " : CRT

INTERMEDIATE CERTIFICATE OR CABUNDLE