
Let’s Encrypt: TLS for NGINX
Let’s Encrypt: TLS for NGINX The following is adapted from a presentation given by Yan Zhu and Peter Eckersley from the Electronic Frontier Foundation (EFF) at nginx.conf 2015, held in San Francisco in September. You can watch the video of the complete talk on YouTube. Table of Contents 0:00 Introduction 00:29 Problem #1 – TLS is Not Ubiquitous 2:10 Problem #2 – Setting up TLS 2:52 How Long Does it Take to Setup TLS? 6:30 Problem #3 – TLS Configuration is Confusing 7:01 RC4 7:58 SHA‑1 8:28 Logjam 8:48 SSL Test 9:06 Problem #4 – Mixed Content Blocking 11:06 W3C 11:45 Problem #5 – Too Many CAs 13:30 The Let’s Encrypt Mission 14:14 Let’s Encrypt 24:01 TLS and HTTPS Problem 25:30 Default Client Functionality 34:19 Let’s Encrypt NGINX 35:20 Parse Configs 35:47 Authenticator 36:28 Installer 37:28 Write Out the Config and Reload NGINX! 37:37 Let’s Encrypt NGINX Demo 39:33 Get Involved 40:13 Get in Touch 0:00 Introduction Yan: Today, [ more… ]