SSL my blog

I’ll be at linux.conf.au all next week and I’m planning to update my blog a few times. The problem is that I’ll be on a wireless connection so prone to people sniffing my passwords.

So I thought I’d see if I could get https going on my server. A quick google found a page on generating self signed certificites and another on lighttpd as a ssl proxy so with a bit of tweaking:

#### SSL engine
$SERVER["socket"] == "64.62.228.123:443" {
                  ssl.engine                  = "enable"
                  ssl.pemfile                 = "/etc/lighttpd/server.pem"
                  server.name                 = "blog.darkmere.gen.nz"
                  proxy.server = (
                       "" => ( ( "host" => "64.62.228.123", "port" => 80 ) )
                   )
}

Which work well enough for me to post this article via. Obviously self-signed certifcates are not the best sort of thing for public sites but in my case I just have to make sure I get my browser to trust the cert before I leave and from then on I can be pretty sure I’m connecting to the right site and nobody is sniffing my traffic.

This evening I’ve been doing the slides for my lightning talk next week. Everything is turning into a bit of a rush since I leave early Saturday morning. But I think I should be okay.

Share