{"id":176,"date":"2017-02-19T08:51:57","date_gmt":"2017-02-19T08:51:57","guid":{"rendered":"http:\/\/zanavu.com\/blog\/?p=176"},"modified":"2017-02-19T08:52:38","modified_gmt":"2017-02-19T08:52:38","slug":"securing-the-website-with-certificates","status":"publish","type":"post","link":"https:\/\/zanavu.com\/notes\/2017\/02\/19\/securing-the-website-with-certificates\/","title":{"rendered":"Securing the website with certificates"},"content":{"rendered":"

Almost a year back, I set up my\u00a0first word press\u00a0site using\u00a0AWS EC2 instance. It took some effort to set up and configure the site with security through SSL. Last year I discovered https:\/\/startssl.com<\/a>\u00a0for SSL Certificates. It was a bit laborious, but it worked well. Unfortunately I forgot to keep tabs and renew the certificate on time.\u00a0The SSL certificate expired and the site was opened up.<\/p>\n

\"\"<\/a>
hemocoel blog site is secured<\/figcaption><\/figure>\n

Based on past experience, I went back to the sale Start SSL certificate to\u00a0get and run certificates. This time around despite all the configurations, the site will not come back in full fidelity. On testing the\u00a0site I found the site\u00a0does not work on Chrome on MAC or Windows and Safari on iOS. After probing this\u00a0further I found this warning:<\/p>\n

Mozilla and Google decided to distrust all StartCom root certificates as of 21<\/span>st<\/span>\u00a0of October, this situation will have an impact in the upcoming release of Firefox and Chrome in January. Apple's decision announced on Nov 30<\/span>th<\/span>\u00a0of distrusting all StartCom root certificates as of 1st of December will have an impact in their upcoming security update.\u00a0<\/span><\/pre>\n
On further research, I found that there are a few interconnected changes have resulted in need for change. Now that StartSSL root certificates are not trusted, it is time to find another trusted source. Thanks to Reddit thread on Certificates<\/a>, I found a new\u00a0provider sponsored through EFF at Lets Encrypt<\/a>\u00a0provider.<\/p>\n
Lets Encrypt goes a further step in providing automated scripts using CertBOT<\/a>\u00a0for Apache servers. While CertBOT\u00a0has a wide range of support,\u00a0it is experimental in Amazon AMI used by EC2 instances. Nouveau provides quick guide on using CertBOT<\/a> with Ec2 instances. Using\u00a0these instructions I was able to get the site back into secure foundation. And now the site says it is secure!<\/p>\n
Years of research helped us create secure environment for us to run websites on the Internet.\u00a0Everyday I am amazed by the creativity and contributions of millions of users on the\u00a0Internet. Thanks to everyone for the contributions made in kind and sweat!<\/p>\n","protected":false},"excerpt":{"rendered":"
Almost a year back, I set up my\u00a0first word press\u00a0site using\u00a0AWS EC2 instance. It took some effort to set up and configure the site with security through SSL. Last year I discovered https:\/\/startssl.com\u00a0for SSL Certificates. It was a bit laborious, but it worked well. Unfortunately I forgot to keep tabs and renew the certificate on […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[12],"tags":[16,11],"class_list":["post-176","post","type-post","status-publish","format-standard","hentry","category-technology","tag-online","tag-techstuff"],"yoast_head":"\nSecuring the website with certificates - Bright Possibilities<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/zanavu.com\/notes\/2017\/02\/19\/securing-the-website-with-certificates\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Securing the website with certificates - Bright Possibilities\" \/>\n<meta property=\"og:description\" content=\"Almost a year back, I set up my\u00a0first word press\u00a0site using\u00a0AWS EC2 instance. It took some effort to set up and configure the site with security through SSL. Last year I discovered https:\/\/startssl.com\u00a0for SSL Certificates. It was a bit laborious, but it worked well. Unfortunately I forgot to keep tabs and renew the certificate on […]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/zanavu.com\/notes\/2017\/02\/19\/securing-the-website-with-certificates\/\" \/>\n<meta property=\"og:site_name\" content=\"Bright Possibilities\" \/>\n<meta property=\"article:published_time\" content=\"2017-02-19T08:51:57+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2017-02-19T08:52:38+00:00\" \/>\n<meta property=\"og:image\" content=\"http:\/\/zanavu.com\/blog\/wp-content\/uploads\/2017\/02\/Screen-Shot-2017-02-18-at-11.59.02-PM-300x53.png\" \/>\n<meta name=\"author\" content=\"Murali\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Murali\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/zanavu.com\/notes\/2017\/02\/19\/securing-the-website-with-certificates\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/zanavu.com\/notes\/2017\/02\/19\/securing-the-website-with-certificates\/\"},\"author\":{\"name\":\"Murali\",\"@id\":\"https:\/\/zanavu.com\/notes\/#\/schema\/person\/4bea3834a6b3e94e965b8b15d3a0a022\"},\"headline\":\"Securing the website with certificates\",\"datePublished\":\"2017-02-19T08:51:57+00:00\",\"dateModified\":\"2017-02-19T08:52:38+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/zanavu.com\/notes\/2017\/02\/19\/securing-the-website-with-certificates\/\"},\"wordCount\":312,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/zanavu.com\/notes\/#organization\"},\"image\":{\"@id\":\"https:\/\/zanavu.com\/notes\/2017\/02\/19\/securing-the-website-with-certificates\/#primaryimage\"},\"thumbnailUrl\":\"http:\/\/zanavu.com\/blog\/wp-content\/uploads\/2017\/02\/Screen-Shot-2017-02-18-at-11.59.02-PM-300x53.png\",\"keywords\":[\"Online\",\"TechStuff\"],\"articleSection\":[\"Technology\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/zanavu.com\/notes\/2017\/02\/19\/securing-the-website-with-certificates\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/zanavu.com\/notes\/2017\/02\/19\/securing-the-website-with-certificates\/\",\"url\":\"https:\/\/zanavu.com\/notes\/2017\/02\/19\/securing-the-website-with-certificates\/\",\"name\":\"Securing the website with certificates - Bright Possibilities\",\"isPartOf\":{\"@id\":\"https:\/\/zanavu.com\/notes\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/zanavu.com\/notes\/2017\/02\/19\/securing-the-website-with-certificates\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/zanavu.com\/notes\/2017\/02\/19\/securing-the-website-with-certificates\/#primaryimage\"},\"thumbnailUrl\":\"http:\/\/zanavu.com\/blog\/wp-content\/uploads\/2017\/02\/Screen-Shot-2017-02-18-at-11.59.02-PM-300x53.png\",\"datePublished\":\"2017-02-19T08:51:57+00:00\",\"dateModified\":\"2017-02-19T08:52:38+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/zanavu.com\/notes\/2017\/02\/19\/securing-the-website-with-certificates\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/zanavu.com\/notes\/2017\/02\/19\/securing-the-website-with-certificates\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/zanavu.com\/notes\/2017\/02\/19\/securing-the-website-with-certificates\/#primaryimage\",\"url\":\"http:\/\/zanavu.com\/blog\/wp-content\/uploads\/2017\/02\/Screen-Shot-2017-02-18-at-11.59.02-PM-300x53.png\",\"contentUrl\":\"http:\/\/zanavu.com\/blog\/wp-content\/uploads\/2017\/02\/Screen-Shot-2017-02-18-at-11.59.02-PM-300x53.png\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/zanavu.com\/notes\/2017\/02\/19\/securing-the-website-with-certificates\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/zanavu.com\/notes\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Securing the website with certificates\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/zanavu.com\/notes\/#website\",\"url\":\"https:\/\/zanavu.com\/notes\/\",\"name\":\"Bright Possibilities\",\"description\":\"Welcome to the World of Possibilities\",\"publisher\":{\"@id\":\"https:\/\/zanavu.com\/notes\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/zanavu.com\/notes\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/zanavu.com\/notes\/#organization\",\"name\":\"Bright Possibilities\",\"url\":\"https:\/\/zanavu.com\/notes\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/zanavu.com\/notes\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/zanavu.com\/notes\/wp-content\/uploads\/2016\/02\/aupic1.bmp\",\"contentUrl\":\"https:\/\/zanavu.com\/notes\/wp-content\/uploads\/2016\/02\/aupic1.bmp\",\"width\":261,\"height\":243,\"caption\":\"Bright Possibilities\"},\"image\":{\"@id\":\"https:\/\/zanavu.com\/notes\/#\/schema\/logo\/image\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\/\/zanavu.com\/notes\/#\/schema\/person\/4bea3834a6b3e94e965b8b15d3a0a022\",\"name\":\"Murali\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/zanavu.com\/notes\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/e1bd605071dc5d22ac2ad578e820c974?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/e1bd605071dc5d22ac2ad578e820c974?s=96&d=mm&r=g\",\"caption\":\"Murali\"},\"sameAs\":[\"https:\/\/www.hemocoel.com\"],\"url\":\"https:\/\/zanavu.com\/notes\/author\/murali\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Securing the website with certificates - Bright Possibilities","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/zanavu.com\/notes\/2017\/02\/19\/securing-the-website-with-certificates\/","og_locale":"en_US","og_type":"article","og_title":"Securing the website with certificates - Bright Possibilities","og_description":"Almost a year back, I set up my\u00a0first word press\u00a0site using\u00a0AWS EC2 instance. It took some effort to set up and configure the site with security through SSL. Last year I discovered https:\/\/startssl.com\u00a0for SSL Certificates. It was a bit laborious, but it worked well. Unfortunately I forgot to keep tabs and renew the certificate on […]","og_url":"https:\/\/zanavu.com\/notes\/2017\/02\/19\/securing-the-website-with-certificates\/","og_site_name":"Bright Possibilities","article_published_time":"2017-02-19T08:51:57+00:00","article_modified_time":"2017-02-19T08:52:38+00:00","og_image":[{"url":"http:\/\/zanavu.com\/blog\/wp-content\/uploads\/2017\/02\/Screen-Shot-2017-02-18-at-11.59.02-PM-300x53.png","type":"","width":"","height":""}],"author":"Murali","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Murali","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/zanavu.com\/notes\/2017\/02\/19\/securing-the-website-with-certificates\/#article","isPartOf":{"@id":"https:\/\/zanavu.com\/notes\/2017\/02\/19\/securing-the-website-with-certificates\/"},"author":{"name":"Murali","@id":"https:\/\/zanavu.com\/notes\/#\/schema\/person\/4bea3834a6b3e94e965b8b15d3a0a022"},"headline":"Securing the website with certificates","datePublished":"2017-02-19T08:51:57+00:00","dateModified":"2017-02-19T08:52:38+00:00","mainEntityOfPage":{"@id":"https:\/\/zanavu.com\/notes\/2017\/02\/19\/securing-the-website-with-certificates\/"},"wordCount":312,"commentCount":0,"publisher":{"@id":"https:\/\/zanavu.com\/notes\/#organization"},"image":{"@id":"https:\/\/zanavu.com\/notes\/2017\/02\/19\/securing-the-website-with-certificates\/#primaryimage"},"thumbnailUrl":"http:\/\/zanavu.com\/blog\/wp-content\/uploads\/2017\/02\/Screen-Shot-2017-02-18-at-11.59.02-PM-300x53.png","keywords":["Online","TechStuff"],"articleSection":["Technology"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/zanavu.com\/notes\/2017\/02\/19\/securing-the-website-with-certificates\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/zanavu.com\/notes\/2017\/02\/19\/securing-the-website-with-certificates\/","url":"https:\/\/zanavu.com\/notes\/2017\/02\/19\/securing-the-website-with-certificates\/","name":"Securing the website with certificates - Bright Possibilities","isPartOf":{"@id":"https:\/\/zanavu.com\/notes\/#website"},"primaryImageOfPage":{"@id":"https:\/\/zanavu.com\/notes\/2017\/02\/19\/securing-the-website-with-certificates\/#primaryimage"},"image":{"@id":"https:\/\/zanavu.com\/notes\/2017\/02\/19\/securing-the-website-with-certificates\/#primaryimage"},"thumbnailUrl":"http:\/\/zanavu.com\/blog\/wp-content\/uploads\/2017\/02\/Screen-Shot-2017-02-18-at-11.59.02-PM-300x53.png","datePublished":"2017-02-19T08:51:57+00:00","dateModified":"2017-02-19T08:52:38+00:00","breadcrumb":{"@id":"https:\/\/zanavu.com\/notes\/2017\/02\/19\/securing-the-website-with-certificates\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/zanavu.com\/notes\/2017\/02\/19\/securing-the-website-with-certificates\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/zanavu.com\/notes\/2017\/02\/19\/securing-the-website-with-certificates\/#primaryimage","url":"http:\/\/zanavu.com\/blog\/wp-content\/uploads\/2017\/02\/Screen-Shot-2017-02-18-at-11.59.02-PM-300x53.png","contentUrl":"http:\/\/zanavu.com\/blog\/wp-content\/uploads\/2017\/02\/Screen-Shot-2017-02-18-at-11.59.02-PM-300x53.png"},{"@type":"BreadcrumbList","@id":"https:\/\/zanavu.com\/notes\/2017\/02\/19\/securing-the-website-with-certificates\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/zanavu.com\/notes\/"},{"@type":"ListItem","position":2,"name":"Securing the website with certificates"}]},{"@type":"WebSite","@id":"https:\/\/zanavu.com\/notes\/#website","url":"https:\/\/zanavu.com\/notes\/","name":"Bright Possibilities","description":"Welcome to the World of Possibilities","publisher":{"@id":"https:\/\/zanavu.com\/notes\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/zanavu.com\/notes\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/zanavu.com\/notes\/#organization","name":"Bright Possibilities","url":"https:\/\/zanavu.com\/notes\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/zanavu.com\/notes\/#\/schema\/logo\/image\/","url":"https:\/\/zanavu.com\/notes\/wp-content\/uploads\/2016\/02\/aupic1.bmp","contentUrl":"https:\/\/zanavu.com\/notes\/wp-content\/uploads\/2016\/02\/aupic1.bmp","width":261,"height":243,"caption":"Bright Possibilities"},"image":{"@id":"https:\/\/zanavu.com\/notes\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/zanavu.com\/notes\/#\/schema\/person\/4bea3834a6b3e94e965b8b15d3a0a022","name":"Murali","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/zanavu.com\/notes\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/e1bd605071dc5d22ac2ad578e820c974?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/e1bd605071dc5d22ac2ad578e820c974?s=96&d=mm&r=g","caption":"Murali"},"sameAs":["https:\/\/www.hemocoel.com"],"url":"https:\/\/zanavu.com\/notes\/author\/murali\/"}]}},"_links":{"self":[{"href":"https:\/\/zanavu.com\/notes\/wp-json\/wp\/v2\/posts\/176","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/zanavu.com\/notes\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/zanavu.com\/notes\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/zanavu.com\/notes\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/zanavu.com\/notes\/wp-json\/wp\/v2\/comments?post=176"}],"version-history":[{"count":3,"href":"https:\/\/zanavu.com\/notes\/wp-json\/wp\/v2\/posts\/176\/revisions"}],"predecessor-version":[{"id":180,"href":"https:\/\/zanavu.com\/notes\/wp-json\/wp\/v2\/posts\/176\/revisions\/180"}],"wp:attachment":[{"href":"https:\/\/zanavu.com\/notes\/wp-json\/wp\/v2\/media?parent=176"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/zanavu.com\/notes\/wp-json\/wp\/v2\/categories?post=176"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/zanavu.com\/notes\/wp-json\/wp\/v2\/tags?post=176"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}