Chridolc
commented
2 years ago Working for my demo : Nginx as reverse proxy with a Let's Encrypt certificate (using certbot). But public ip will not be logged by Nexphisher (will only see127.0.0.1) : must refer to nginx access.log file.
nginx conf file :
server {
listen 443;
server_name XXXXXXXXXX.YYY;
ssl on;
ssl_certificate /etc/letsencrypt/live/XXXXXXXXXX.YYY/fullchain.pem; # managed by Certbot
ssl_certificate_key /etc/letsencrypt/live/XXXXXXXXXX.YYY/privkey.pem; # managed by Certbot
ssl_protocols TLSv1.2 TLSv1.3;
ssl_ciphers "EECDH+ECDSA+AESGCM EECDH+aRSA+AESGCM EECDH+ECDSA+SHA384 EECDH+ECDSA+SHA256 EECDH+aRSA+SHA384 EECDH+aRSA+SHA256 EECDH+aRSA+RC4 EECDH EDH+aRSA HIGH !RC4 !aNULL !eNULL !LOW !3DES !MD5 !EXP !PSK !SRP !DSS";
ssl_prefer_server_ciphers on;
location / {
limit_except GET HEAD POST { deny all; }
proxy_pass http://127.0.0.1:5555;
}
}
server {
if ($host = XXXXXXXXXX.YYY) {
return 301 https://$host$request_uri;
} # managed by Certbot
How can I add a ssl certificate to get the login page for first time?