From ee7e5786e7727316be493bdd1e6e554271f90683 Mon Sep 17 00:00:00 2001 From: Thomas Maurice Date: Wed, 27 Mar 2024 09:28:56 +0100 Subject: [PATCH] fix(readme): moar info --- README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.md b/README.md index 300d64d..0ba022a 100644 --- a/README.md +++ b/README.md @@ -183,7 +183,7 @@ You need to install nginx (or apache2, or traefik, whichever you are more comfor ## Create a certificate for our deployments -While you are at it you might as well create a DNS `A` fields to point at OpenWRT (which will forward it to nginx). +While you are at it you might as well create a DNS `A` fields to point at OpenWRT (which will forward it to nginx). To do this use Gandi and one of the domains you probably already have from other labs. We need to use a certificate to secure HTTPS communication, the Matrix protocols require it. This can be done manually for the moment and automated later, as it is not super straightforward. I refer you to the [documentation on certbot + nginx](https://www.digitalocean.com/community/tutorials/how-to-secure-nginx-with-let-s-encrypt-on-ubuntu-20-04) I would recommend that you create a `matrix.` certificate, then back them up somewhere safe as Letsencrypt has pretty aggressive rate limiting with regard to certificate creations.