NEW! Subscribe to our email newsletter » NEW! Subscribe to our FREE email newsletter to receive updates »

Certbot (Let’s Encrypt)

Cerbot is now supported in SlickStack as a “backup” SSL mechanism. OpenSSL will always remain our default and preferred encryption tool because its native to Ubuntu and Nginx, very stable and easy, lightweight, requires no third parties, and is the most safe and secure method out there (self signed).

In this regard CloudFlare is such an incredible pairing with OpenSSL and a godsend of sorts.

However at the same time we don’t want to put all our eggs in one basket by relying on CloudFlare. Who knows what political, technical, or other issue will arise in the future, and after all CloudFlare is a commercial service provider and not open source software.

So every SlickStack server will now automatically request and generate a free Lets Encrypt certificate anytime ss-install is run.

However OpenSSL will remain the active cert unless ss-config options are changed to Certbot.

Because we want to completely eliminate Port 80 and HTTP, that means the Cerbot validation must occur over Port 443 (HTTPS). This is of course impossible, unless you are using their very messy DNS challenge option (unstable), or unless HTTPS is already signed.

Again this puts us back in the arms of CloudFlare and OpenSSL. So you must ensure CloudFlare is activated before running ss-install at all times.

How we maintain both HTTP and HTTPS mirrors

GitHub Pages is an awesome feature that came out a few years ago on GitHub to allow for basic, static-file HTML websites to be hosted free of charge on GitHub. It can be a bit confusing to understand in the beginning, because you must connect one of your repos to be used for a given […]

Native Staging Sites (Optional) In Subdirectory

For the past several weeks, SlickStack has been testing our new Staging Site feature and it is now live on all SlickStack installations. If you use another staging service or simply don’t use staging at all and wish to disable staging sites, simply change your ss-config options to be STAGING_SITE=”false” and it will later remove […]

Adminer Bundled For Easy MySQL Management

The very lightweight Adminer script is now included by default in all SlickStack installations, hosted as a single adminer.php file under the /var/www/meta/ directory. This “hidden file” approach means a cleaner public web root, and less room for attacks and exploits. It uses the Nginx alias feature to point requests to to the /var/www/meta/adminer.php […]