{"id":601,"date":"2019-06-21T13:01:44","date_gmt":"2019-06-21T12:01:44","guid":{"rendered":"https:\/\/notiz.comanet.xyz\/?p=601"},"modified":"2019-11-11T00:35:18","modified_gmt":"2019-11-10T23:35:18","slug":"linux-ubuntu-18-4-yacy-ssl","status":"publish","type":"post","link":"https:\/\/notiz.comanet.xyz\/?p=601","title":{"rendered":"Linux – Ubuntu 18.4 – Docker – YaCy \u00fcber HTTPS"},"content":{"rendered":"

SSL Certifikat za yacy<\/h1>\n

https:\/\/github.com\/yacy\/yacy_search_server\/issues\/194<\/p>\n

Letsencript<\/strong>
\n– install certboot<\/p>\n

– open port 80 – certboot ima http server – opcija –standalone
\n– generirat certifikat:<\/p>\n

sudo certbot certonly --standalone -d example.com\r\n\r\n<\/pre>\n
sudo certbot certonly --standalone -d comanet.ddns.net\r\n\r\n<\/pre>\n
– Certifkat je sada u \/etc\/letsencrypt\/live\/comanet.ddns.net\/<\/p>\n
– Konvertirat Certifikat<\/strong><\/h3>\n
– use openssl to convert them into yacy-readable format:
\n– generira keystore.pkcs12 u ordneru gdje se nalazis pa je zato najbolje biti u \/DATA\/SETTINGS kad knvertiras<\/strong><\/p>\n
openssl pkcs12 -export -out keystore.pkcs12 -passout pass:pass -in \/etc\/letsencrypt\/live\/example.com\/cert.pem -inkey \/etc\/letsencrypt\/live\/example.com\/privkey.pem -certfile \/etc\/letsencrypt\/live\/example.com\/fullchain.pem<\/pre>\n
sudo openssl pkcs12 -export -out letsencrypt.pkcs12 -in \/etc\/letsencrypt\/live\/comanet.ddns.net\/cert.pem -inkey \/etc\/letsencrypt\/live\/comanet.ddns.net\/privkey.pem -certfile \/etc\/letsencrypt\/live\/comanet.ddns.net\/fullchain.pem<\/pre>\n
– Ako se ne nalazis u \/DATA\/SETTINGS kopiraj:
\n– yacy_search_server\/DATA\/SETTINGS\/keystore.pkcs12<\/p>\n
– update the yacy conf in <YaCy-Dir>\/DATA\/SETTINGS\/yacy.conf:<\/p>\n
keyStore=\r\nkeyStoePassword=\r\npkcs12ImportFile = DATA\/SETTINGS\/keystore.pkcs12\r\npkcs12ImportPwd = pass<\/pre>\n
\n
Next starts<\/p>\n
As attached process<\/p>\n
docker start -a yacy<\/pre>\n
As background process<\/p>\n
docker start yacy<\/pre>\n
Shutdown<\/p>\n
Use “Shutdown” button in administration web interface<\/p>\n
OR run :<\/p>\n
docker exec [your_container_name] \/opt\/yacy_search_server\/stopYACY.sh<\/pre>\n
OR run :<\/p>\n
docker stop [your_container_name]<\/pre>\n
Upgrade<\/p>\n
You can upgrade your YaCy container the Docker way with the following commands sequence.<\/p>\n
Get latest Docker image :<\/p>\n
docker pull luccioman\/yacy:latest<\/pre>\n
OR<\/p>\n
docker pull luccioman\/yacy:latest-alpine<\/pre>\n
Create new container based on pulled image, using volume data from old container :<\/p>\n
docker create --name [tmp-container_name] -p 8090:8090 -p 8443:8443 --volumes-from=[container_name] --log-opt max-size=100m --log-opt max-file=2 luccioman\/yacy:latest<\/pre>\n
Stop old container :<\/p>\n
docker exec [container_name] \/opt\/yacy_search_server\/stopYACY.sh<\/pre>\n
Start new container :<\/p>\n
docker start [tmp-container_name]<\/pre>\n
Check everything works fine, then you can delete old container :<\/p>\n
docker rm [container_name]<\/pre>\n
Rename new container to reuse same container name :<\/p>\n
docker rename [tmp-container_name] [container_name]\r\n\r\n<\/pre>\n
https:\/\/notiz.comanet.xyz\/?p=593<\/p>\n","protected":false},"excerpt":{"rendered":"
SSL Certifikat za yacy https:\/\/github.com\/yacy\/yacy_search_server\/issues\/194 Letsencript – install certboot – open port 80 – certboot ima http server – opcija –standalone – generirat certifikat: sudo certbot certonly –standalone -d example.com sudo certbot certonly –standalone -d comanet.ddns.net – Certifkat je sada u \/etc\/letsencrypt\/live\/comanet.ddns.net\/ – Konvertirat Certifikat – use openssl to convert them into yacy-readable format: –…<\/p>\n","protected":false},"author":1,"featured_media":610,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3,6],"tags":[],"class_list":["post-601","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-how-to-s","category-linux"],"_links":{"self":[{"href":"https:\/\/notiz.comanet.xyz\/index.php?rest_route=\/wp\/v2\/posts\/601","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/notiz.comanet.xyz\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/notiz.comanet.xyz\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/notiz.comanet.xyz\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/notiz.comanet.xyz\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=601"}],"version-history":[{"count":6,"href":"https:\/\/notiz.comanet.xyz\/index.php?rest_route=\/wp\/v2\/posts\/601\/revisions"}],"predecessor-version":[{"id":650,"href":"https:\/\/notiz.comanet.xyz\/index.php?rest_route=\/wp\/v2\/posts\/601\/revisions\/650"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/notiz.comanet.xyz\/index.php?rest_route=\/wp\/v2\/media\/610"}],"wp:attachment":[{"href":"https:\/\/notiz.comanet.xyz\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=601"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/notiz.comanet.xyz\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=601"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/notiz.comanet.xyz\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=601"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}