Comments on: How to Add Some Security with a Self-Signed SSL Certificate to Your Rails App Served by Nginx http://shapingclouds.com/2010/01/02/how-to-add-some-security-with-a-self-signed-ssl-certificate-to-your-rails-app-running-on-nginx/ A blog on developing, deploying and maintaining web applications at Firmhouse Thu, 26 Jan 2012 05:33:58 +0000 hourly 1 http://wordpress.org/?v=3.1.2 By: Brian http://shapingclouds.com/2010/01/02/how-to-add-some-security-with-a-self-signed-ssl-certificate-to-your-rails-app-running-on-nginx/comment-page-1/#comment-259 Brian Tue, 03 May 2011 11:28:21 +0000 http://shapingclouds.com/?p=399#comment-259 The process really wasn't different at all for using a CA. Just had to jump through some more hoops to generate the CA. StartSSL gives a way free certs that last for one year. Thought that was a pretty good deal. Some more info on signing up here.... http://minhajuddin.com/2011/03/11/how-to-hookup-nginx-with-startssl/ The process really wasn’t different at all for using a CA. Just had to jump through some more hoops to generate the CA.

StartSSL gives a way free certs that last for one year. Thought that was a pretty good deal.

Some more info on signing up here….
http://minhajuddin.com/2011/03/11/how-to-hookup-nginx-with-startssl/

]]> By: Michiel http://shapingclouds.com/2010/01/02/how-to-add-some-security-with-a-self-signed-ssl-certificate-to-your-rails-app-running-on-nginx/comment-page-1/#comment-258 Michiel Mon, 02 May 2011 14:09:07 +0000 http://shapingclouds.com/?p=399#comment-258 Hi Brian, I will see what I can do with using a cert from a CA. At the moment I don't have a preferred CA. When writing the blogpost, maybe I can find some so you can check them out. Thank you for the comment! Hi Brian,

I will see what I can do with using a cert from a CA. At the moment I don’t have a preferred CA. When writing the blogpost, maybe I can find some so you can check them out.

Thank you for the comment!

]]> By: Brian http://shapingclouds.com/2010/01/02/how-to-add-some-security-with-a-self-signed-ssl-certificate-to-your-rails-app-running-on-nginx/comment-page-1/#comment-257 Brian Mon, 02 May 2011 11:28:45 +0000 http://shapingclouds.com/?p=399#comment-257 Do you have plans to write a tutorial for using a cert from a CA? Also, any chance you could recommend the best value CA? Do you have plans to write a tutorial for using a cert from a CA? Also, any chance you could recommend the best value CA?

]]> By: Michiel http://shapingclouds.com/2010/01/02/how-to-add-some-security-with-a-self-signed-ssl-certificate-to-your-rails-app-running-on-nginx/comment-page-1/#comment-246 Michiel Mon, 15 Nov 2010 21:12:36 +0000 http://shapingclouds.com/?p=399#comment-246 Hi Daniel, I'm glad you like the article. Many thanks for pointing out the typo. I fixed it in the original article! Michiel Hi Daniel,

I’m glad you like the article. Many thanks for pointing out the typo. I fixed it in the original article!

Michiel

]]> By: Daniel http://shapingclouds.com/2010/01/02/how-to-add-some-security-with-a-self-signed-ssl-certificate-to-your-rails-app-running-on-nginx/comment-page-1/#comment-245 Daniel Mon, 15 Nov 2010 20:44:57 +0000 http://shapingclouds.com/?p=399#comment-245 Hey Mikel, Really great article. Found a typo: In your last code snippet, you forgot to append a 1 after your dollar sign: server { listen 80; server_name www.yourdomain.com yourdomain.com; rewrite ^(.*) https://yourdomain.com$1 permanent; } thanks, -dan Hey Mikel,

Really great article.

Found a typo: In your last code snippet, you forgot to append a 1 after your dollar sign:

server {
listen 80;
server_name http://www.yourdomain.com yourdomain.com;
rewrite ^(.*) https://yourdomain.com$1 permanent;
}

thanks,
-dan

]]> By: How to: Self-Signed SSL Certificate in Your Rails App Served by … http://shapingclouds.com/2010/01/02/how-to-add-some-security-with-a-self-signed-ssl-certificate-to-your-rails-app-running-on-nginx/comment-page-1/#comment-149 How to: Self-Signed SSL Certificate in Your Rails App Served by … Sat, 16 Jan 2010 04:45:29 +0000 http://shapingclouds.com/?p=399#comment-149 [...] How to: Self-Signed SSL Certificate in your Rails App Served by &#8230... [...] [...] How to: Self-Signed SSL Certificate in your Rails App Served by &#8230… [...]

]]> By: Michiel http://shapingclouds.com/2010/01/02/how-to-add-some-security-with-a-self-signed-ssl-certificate-to-your-rails-app-running-on-nginx/comment-page-1/#comment-144 Michiel Mon, 04 Jan 2010 13:20:15 +0000 http://shapingclouds.com/?p=399#comment-144 Hi Mohamed1. That's great news. I'm happy I could help. If you have any other questions about using SSL with Rails or nginx. Please let me know. Hi Mohamed1. That’s great news. I’m happy I could help. If you have any other questions about using SSL with Rails or nginx. Please let me know.

]]> By: Mohamed1 http://shapingclouds.com/2010/01/02/how-to-add-some-security-with-a-self-signed-ssl-certificate-to-your-rails-app-running-on-nginx/comment-page-1/#comment-143 Mohamed1 Mon, 04 Jan 2010 12:26:32 +0000 http://shapingclouds.com/?p=399#comment-143 I had the same issue at http://onexenvps.com but I figured out it with your tutorial THANKS! I had the same issue at http://onexenvps.com but I figured out it with your tutorial THANKS!

]]> By: Michiel http://shapingclouds.com/2010/01/02/how-to-add-some-security-with-a-self-signed-ssl-certificate-to-your-rails-app-running-on-nginx/comment-page-1/#comment-140 Michiel Sun, 03 Jan 2010 01:28:26 +0000 http://shapingclouds.com/?p=399#comment-140 @taf2 (second comment): Agreed, maybe I will write up an article with the same content after I have tested with better demoable alternatives for signed certificates. And: much thanks for your comments. I rather have smart critical ones than none at all :) If you have any tips or other suggestions, please drop a line! @taf2 (second comment): Agreed, maybe I will write up an article with the same content after I have tested with better demoable alternatives for signed certificates.

And: much thanks for your comments. I rather have smart critical ones than none at all :) If you have any tips or other suggestions, please drop a line!

]]> By: Michiel http://shapingclouds.com/2010/01/02/how-to-add-some-security-with-a-self-signed-ssl-certificate-to-your-rails-app-running-on-nginx/comment-page-1/#comment-139 Michiel Sun, 03 Jan 2010 01:26:28 +0000 http://shapingclouds.com/?p=399#comment-139 Hi taf2. I totally agree with you on that point. Self-signing your application is not the right move on production environment. If you want a trustworthy web app in terms of security you need to have a signed certificate by a CA. However, when you want do demo your app and have sensitive information on it it is at least somewhat better to have a self-signed SSL encrypted connection to prevent network sniffers and the like which can be active both on the client's side as on the server side. Getting a signed certificate by a CA can take some time and I haven't had any success with the free alternatives yet. So, if you want to have your information-sensitive demo up and running as quickly as possible adding a self-signed certificate is better than just leaving it open. Hi taf2. I totally agree with you on that point. Self-signing your application is not the right move on production environment. If you want a trustworthy web app in terms of security you need to have a signed certificate by a CA.

However, when you want do demo your app and have sensitive information on it it is at least somewhat better to have a self-signed SSL encrypted connection to prevent network sniffers and the like which can be active both on the client’s side as on the server side. Getting a signed certificate by a CA can take some time and I haven’t had any success with the free alternatives yet.

So, if you want to have your information-sensitive demo up and running as quickly as possible adding a self-signed certificate is better than just leaving it open.

]]>