Im getting a bit mixed up in regards to what i need to do in order to progress and get my server on the internet in as secure a manner as possible.
I have a server running Ubuntu and Owncloud which i intend to harden up by configuring SSL and then allowing it access to the internet on specific ports. For all intents and purposes though, this is ubuntu with apache and SSL.
So currently i have a domain name which points to my home IP address - lets call it
www.homenet.com
On my server behind my router (with no forwarding at all configured right now) i have opencloud running on for example:-
192.168.0.2/owncloud
And its this i want to make available on the internet.
So say i want to generate a secure certificate, i can do a self signed one or i can get one from my domain name provider. Now, im not running a payments site here or anything, its simply my own cloud server so i want security but it doesnt have to be fort knox and my domain name provider will give me a free one.
So what do i do? Do i generate a cerficate from my domain name provider for www.homenet.com and put that on my server then open up port 443 on my router to test? Or do i generate a self signed one for 192.168.0.2/owncloud or something similar and get it up and running first with https locally? I assume once im happy i can generate a proper cery with my domain name provider.
I should add that i cant access my server on HTTPS internally at the moment as there is no cert configured.
If the above isnt quite making sense, its probably because im making a lot of assumptions here about how i think this should work so feel free to correct me or suggest alternatives to my thinking.
Question
TheBlueRaja
Hi Folks,
Im getting a bit mixed up in regards to what i need to do in order to progress and get my server on the internet in as secure a manner as possible.
I have a server running Ubuntu and Owncloud which i intend to harden up by configuring SSL and then allowing it access to the internet on specific ports. For all intents and purposes though, this is ubuntu with apache and SSL.
So currently i have a domain name which points to my home IP address - lets call it
www.homenet.com
On my server behind my router (with no forwarding at all configured right now) i have opencloud running on for example:-
192.168.0.2/owncloud
And its this i want to make available on the internet.
So say i want to generate a secure certificate, i can do a self signed one or i can get one from my domain name provider. Now, im not running a payments site here or anything, its simply my own cloud server so i want security but it doesnt have to be fort knox and my domain name provider will give me a free one.
So what do i do? Do i generate a cerficate from my domain name provider for www.homenet.com and put that on my server then open up port 443 on my router to test? Or do i generate a self signed one for 192.168.0.2/owncloud or something similar and get it up and running first with https locally? I assume once im happy i can generate a proper cery with my domain name provider.
I should add that i cant access my server on HTTPS internally at the moment as there is no cert configured.
If the above isnt quite making sense, its probably because im making a lot of assumptions here about how i think this should work so feel free to correct me or suggest alternatives to my thinking.
Thanks
Link to comment
Share on other sites
3 answers to this question
Recommended Posts