Share

Question

Hello

Yesterday I installed the LAMP stack successfully with this tutorial https://www.digitalocean.com/community/tutorials/how-to-install-linux-apache-mysql-php-lamp-stack-on-ubuntu-16-04. At the end of the tutorial they say that you should secure Apache with Let’s Encrypt but that only works if you have a domain and i don’t have one.

So my question is if there are other ways to secure Apache if you only use the public ip to connect to my website?

I have set up a basic ufw firewall.

Another question I have is: Is it safe to share the public ip so people can look at my site? I have looked at this question https://www.digitalocean.com/community/questions/is-there-a-risk-to-my-website-with-my-public-ip-address but would like a better confirmation that it is safe to share it.

P.S. I don’t really need a domain since I will mainly use the site as portfolio site to show to employers and for school.

Answer 1

Woet February 25, 2017

As I mentioned in that question, there is no risk. You can use a self-signed cert if you want SSL.

Reply Report

hansen February 25, 2017

Just to guide you: https://www.digitalocean.com/community/tutorials/how-to-create-a-self-signed-ssl-certificate-for-apache-in-ubuntu-16-04

How To Create a Self-Signed SSL Certificate for Apache in Ubuntu 16.04
by Justin Ellingwood
TLS, or transport layer security, and its predecessor SSL, which stands for secure sockets layer, are web protocols used to wrap normal traffic in a protected, encrypted wrapper. Using this technology, servers can send traffic safely between the server and clients...
Reply Report
- Huskerdoggo February 26, 2017
  
  @hansen yeah i already found that same tutorial but thank you anyway. will look at it tomorrow.
  
  Reply Report

Answer 2

hansen February 25, 2017

Just to guide you: https://www.digitalocean.com/community/tutorials/how-to-create-a-self-signed-ssl-certificate-for-apache-in-ubuntu-16-04

How To Create a Self-Signed SSL Certificate for Apache in Ubuntu 16.04
by Justin Ellingwood
TLS, or transport layer security, and its predecessor SSL, which stands for secure sockets layer, are web protocols used to wrap normal traffic in a protected, encrypted wrapper. Using this technology, servers can send traffic safely between the server and clients...
Reply Report
- Huskerdoggo February 26, 2017
  
  @hansen yeah i already found that same tutorial but thank you anyway. will look at it tomorrow.
  
  Reply Report

Answer 3

NikilMunireddy066 February 8, 2019

****Self sign the certificate

openssl req -x509 -newkey rsa:4096 -nodes -out cert.pem -keyout key.pem -days 365

Run the command, by running this command two files are created cert.pem and key.pem , in this process it will ask few questions which are necessary to create certificate . Since we have passed days argument as 365, it is valid for another one year.

Reply Report

Related

Question

Securing website without domain name

Leave a comment

Looking for something else?

Share

Share your Question

Related

Question

Securing website without domain name

Leave a comment

Related

question

PHP Error Log: authz_core:error - For files that don't exists on my server

question

blocked ip in spam

question

Having MongoDB Startup Errors!

question

How to make web service unavailable. As I develop this application, I'd rather not be burning up CPU or access time when not logged in.

Looking for something else?

Almost there!