docker-traefik
acme.sh
Our great sponsors
docker-traefik | acme.sh | |
---|---|---|
49 | 279 | |
2,529 | 36,504 | |
- | 2.1% | |
6.2 | 8.9 | |
3 months ago | about 11 hours ago | |
Shell | Shell | |
MIT License | GNU General Public License v3.0 only |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
docker-traefik
-
Multiple domains behind Traefik
https://github.com/htpcBeginner/docker-traefik/blob/master/docker-compose-t2.yml under the Traefik section has it commented out. It's a big file but I just remember it having it. They set the domain names in an .env but you could just type it in.
-
Tried freeing ports 80 and 443 and now I've screwed everything up... help! Am I screwed? :(
So I tried running this script as part of a larger plan to re-work all of my containers.
- Authelia with Nginx Reverse Proxy
-
How would you setup this home network
For roughly similar needs, I used the guides at SmartHomeBeginner to help design the foundation. For me, docker is what makes managing everything manageable. I have one 24/7 Linux server running as the docker host (and Traefik, Plex, AdGuard, MongoDB, FileRun, oauth, sycthing, ...) containers doing what I need. If using docker, the host distro barely matters.
-
I want to access my self hosted apps remotely , I have some information on how to do but seems that isn't enough . can someone guide me or point me in right direction ? Thank you!
Check out this. The author and the discord channel are very active, lots of guides for various scenarios and different apps, plus the github has his compose files and a bunch of other config and examples too. It's how I got started. https://www.smarthomebeginner.com/
-
What containers do you use on docker?
I really got started with a docker-compose setup by using smarthomebeginner. The guide I followed is fairly complex; it includes a reverse proxy and setting up ssl certificates using CloudFlare.
-
[Docker] Erreur \"(root) La propriété supplémentaire portainer n’est pas autorisée\ » lors de l’exécution de \"sudo docker-compose up -d\ » avec le fichier docker ci-dessous. Aider, s’il vous plaît!!
# Plus d'informations sur la façon d'utiliser ceci: https://github.com/htpcBeginner/docker-traefik/pull/228
-
Powerful energy-efficient server
https://github.com/htpcBeginner/docker-traefik/blob/master/docker-compose-t2.yml (always over 50 containers)
- how do you deploy your containers?
- Stupid Docker Tricks: Don't start docker container without a "flag file" existing
acme.sh
-
How to Build Email Server with Exim on Alma Linux 9
Next, we will install acme.sh, a command-line tool for managing SSL/TLS certificates. I prefer acme.sh over certbot, as it does not depend on the OS version. For more details about acme.sh, check its GitHub repo here.
-
Dehydrated: Letsencrypt/acme client implemented as a shell-script
A very relevant question. Acme.sh, a similar shell script ACME client, had a remote code execution problem last year.
https://github.com/acmesh-official/acme.sh/issues/4668
-
Ask HN: What is your experience with ZeroSSL?
As a result, any certificates issued (or renewed) after Feb 8th will not work on older Android devices (< 7.1.1), unless the ACME client has been configure to request an alternate certificate chain. The "alternate chain" workaround will also stop working on June 6th.
I need to support these older Android devices so I am looking for alternatives. I have seen ZeroSSL mentioned a few times; it is also the default CA for acme.sh (the ACME client I am using nowadays) [2]. They have a number of paid plans but ACME certificates are free [3].
I'll be testing this over the next few days, but I would also like to ask if people here have experience with ZeroSSL (good or bad :-). Any feedback would be helpful.
[1]: https://letsencrypt.org/2023/07/10/cross-sign-expiration.html
[2]: https://github.com/acmesh-official/acme.sh
[3]: https://zerossl.com/documentation/acme/
-
Why Certificate Lifecycle Automation Matters
Huh, the environment variable thing was specifically aimed at acme.sh which rather arbitrarily changed the config value from ACMEDNS_UPDATE_URL to ACMEDNS_BASE_URL, never acknowledged this in a changelog and then silently failed after an automatic upgrade as recommended by the default install:
https://github.com/acmesh-official/acme.sh/commit/2ce145f359...
It's also cleared out my .account.conf files when run on the suggested cron.
I've started using updown which also monitors my TLS certs simply because I no longer trust the process to work as documented.
-
The Bureau of Meteorology website does not support connections via HTTPS
It depends on your provider though. I can tell from experience that with OVH and their API, it's been easy to set up the automatic renewal via DNS verification. Apparently, the official client has support for the DNS API of 159 providers: https://github.com/acmesh-official/acme.sh/wiki/dnsapi
-
I made a tool for automatically updating the current and next (rollover) TLSA DNS records with acme.sh and the Cloudflare API
For the few people here that happen to run a self-hosted email server with acme.sh for TLS key/cert generation and Cloudflare for DNS management, I have made a tool that i personally use to get a perfect 100% score on Internet.nl's email test.
-
How to get LetsEncrypt certs from PfSense/ACME to other machines? (automated??)
All of this is to say it's a decent amount of work to save the hassle of deploying certbot or acme.sh on the remote machines, pick your poison.
-
Hosting at home & SSL
Here is a really solid guide for setting up the ACME DNS challenge with pretty much any DNS provider
-
This is Fine
People wonder why I like using the shell-based ACME client like dehydrated (or acme.sh):
* https://packages.debian.org/search?keywords=dehydrated
* https://github.com/acmesh-official/acme.sh
Versus the official client certbot:
* https://packages.debian.org/search?keywords=python3-certbot
A kludgy as very long shell scripts are (thought to be), I have a better chance of being able to go through all the code and understand it than a dozen(+) Python libraries.
-
Where to get free SSL certificates?
So today I figured out how to install acme.sh to my hosted server space for my websites, and used acme to issue an SSL certificate and install it for a domain. It uses LetsEncrypt, and ZeroSSL for the default Certificate Authority (CA). Then I notice that ZeroSSL only allows a free 90 day certificate, and only 3 of those before you have to pay. Is there any way to generate actual free SSL certificates that do not expire for a year or more and that can be renewed free? I have heard that most hosting plans now provide free SSL certs, so is my hosting company just providing cheap hosting but making money on the backend by charging for SSL certs?
What are some alternatives?
Heimdall-Apps - Apps for Heimdall
letsencrypt - Certbot is EFF's tool to obtain certs from Let's Encrypt and (optionally) auto-enable HTTPS on your server. It can also act as a client for any other CA that uses the ACME protocol.
homer - A very simple static homepage for your server.
Nginx Proxy Manager - Docker container for managing Nginx proxy hosts with a simple, powerful interface
pimox7 - Proxmox V7 for Raspberry Pi
dehydrated - letsencrypt/acme client implemented as a shell-script – just add water
homer-icons
lego - Let's Encrypt/ACME client and library written in Go
DockSTARTer - DockSTARTer helps you get started with running apps in Docker.
pterodactyl-installer - :bird: Unofficial installation scripts for Pterodactyl Panel
make-my-server - Docker Compose with Traefik and lots of services
docker - ⛴ Docker image of Nextcloud