Archive for April, 2016
Improving my OpenVPN Ansible Playbook
Posted by Kyle Lexmond in Sysadmin on April 11, 2016
I had a working OpenVPN configuration. But it wasn’t the best it could be. The manpage for OpenVPN 2.3 (community.openvpn.net/openvpn/wiki/Openvpn23ManPage) was used to find particularly interesting options. For most of the changes I had to find examples and more information through Googling, though blog.g3rt.nl/openvpn-security-tips.html is of particular note for popping up very often. Improving TLS […]
Using Amazon S3 + CloudFront + Certificate Manager to get seamless static HTTPS support
Posted by Kyle Lexmond in Linux on April 3, 2016
TL;DR: This post documents the process I took to get S3 to return redirect requests over HTTP + HTTPS to a given domain. I’m trying to trim down the number of domains and subdomains that I host on my server, since I’m trying a new policy of moving servers every few months in an attempt […]