Tag: ssl
Every configuration on this site assumes HTTPS — no mixed server blocks, no optional SSL, no cleartext fallbacks. Why browsers now default to HTTPS, why SSL is free and automated, and why mixed content can't exist when there's no HTTP to serve it from. The architectural premise behind every guide.
Every Cloudflare toggle you should turn off, and the origin hardening that must be in place first. Full (Strict) SSL, no content modification, no header injection — a configuration where your VPS owns every security decision and Cloudflare provides the network.
Issue and renew Let's Encrypt certificates with certonly and webroot authentication — full control of your Nginx configuration, no auto-generated edits, shared webroot directory, and a cron job that just works.
Nginx is at its fastest when there's no backend to talk to. A complete guide to serving static sites — clean URLs, pre-compressed assets, aggressive caching, and security headers you can actually lock down.
Use Nginx as a reverse proxy to securely access your Jellyfin media server from anywhere — with SSL, security headers, WebSocket support, and dynamic DNS for residential connections.
If you are seeing this error this month (May 2025) and have tried searching the web for a fix you will find that there will be no fix that keeps SSL Stapling enabled. LetsEncrypt no longer includes OCSP URLs. Here's how to update your configuration.