https://ndonaghy.com/tags/tls/ Recent content in Tls on Niall Donaghy Hugo en-gb Mon, 06 Apr 2026 23:24:03 +0100 https://ndonaghy.com/posts/openbsd-httpd-tls-certificate/ Mon, 06 Apr 2026 23:24:03 +0100 https://ndonaghy.com/posts/openbsd-httpd-tls-certificate/ <p>Migrating OpenBSD httpd from HTTP to HTTPS</p> <p>LetsEncrypt offer free TLS certs and have a nice ACME clients to handle auto-renewal. Here&rsquo;s how to implement on OpenBSD, assuming you have your httpd server up and running on port 80 already.</p> <p>For example you might have some basic <code>/etc/httpd</code>:</p> <pre tabindex="0"><code>types { include &#34;/usr/share/misc/mime.types&#34; } server &#34;ndonaghy.com&#34; { listen on * port 80 root &#34;/htdocs&#34; location &#34;/stuff/*&#34; { directory { auto index } } } </code></pre><h2 id="step-1-add-acme-challenge-location">Step 1: Add acme-challenge location</h2> <p>Add this location directive to /etc/httpd.conf:</p>