Make a docker instance serve SSL (https)

 Enabling SSL on an Apache Docker Instance

Step 1 – Enable SSL inside the container


docker exec -it <container_name> bash
a2enmod ssl socache_shmcb

Step 2 – Copy SSL certificate and key from host to container
On the host, use the actual files from /etc/letsencrypt/archive/ (not the symlinks in live/):


docker cp /etc/letsencrypt/archive/mysite.com/fullchain30.pem <container_name>:/etc/ssl/certs/mysite.crt
docker cp /etc/letsencrypt/archive/mysite.com/privkey30.pem <container_name>:/etc/ssl/private/mysite.key

Step 3 – Edit Apache vhost to use SSL
Inside the container:


vi /etc/apache2/sites-enabled/000-default.conf

Replace content with:


<VirtualHost *:80>
    SSLEngine on
    ServerName www.mysite.com
    ServerAlias mysite.com 

    SSLCertificateFile /etc/ssl/certs/mysite.crt
    SSLCertificateKeyFile /etc/ssl/private/mysite.key

    DocumentRoot /var/www/html/dockerhtml/
    DirectoryIndex index.html index.php
</VirtualHost>

Step 4 – Allow Apache to serve from non-default path
Edit:

vi /etc/apache2/apache2.conf

Append:

<Directory /var/www/html/dockerhtml/>
    Options Indexes FollowSymLinks
    Require all granted
</Directory>

possibly also to the default <Directory /> entry as well.

Step 5 – Set a global ServerName
At the top of /etc/apache2/apache2.conf:

ServerName www.mysite.com

to get rid of the FQDN complaint

Step 6 – Reload Apache without killing the container

apache2ctl -k graceful

Your Docker-hosted Apache is now serving HTTPS on the mapped port using your Let’s Encrypt certificate from the host.

Popular posts from this blog

Automatically Fix Song Metadata and Filenames on Linux with Beets

 🎵 Automatically Fix Song Metadata and Filenames on Linux with Beets Tired of sorting through unknown MP3s with cryptic filenames like Track01.mp3? Sick of missing album info, incorrect genres, and zero cover art? Here's a clean way to batch-fix your music collection with open source tools — no manual editing required. ✅ What You’ll Use beets — the core tool that organizes, renames, and tags your music by matching against the MusicBrainz database. libchromaprint-tools — provides fpcalc, which generates audio fingerprints to identify unlabeled tracks. ffmpeg (optional) — used by beets for transcoding or embedded cover art processing. 🔧 Installation sudo apt update sudo apt install beets libchromaprint-tools ffmpeg 🚀 One Command to Organize It All beet import /path/to/your/music/ Beets will: Fingerprint each file Query MusicBrainz for metadata Rename files (e.g., Artist - Title.mp3) Write correct ID3/metadata tag Optionally move files into organized folders 📁 Example Output Your ...
Read more

throttle traffic on apache

sudo apt install apache2-utils sudo apt install libapache2-mod-evasive vi /etc/apache2/mods-enabled/evasive.conf service apache restart edit it and set values as per below or whatever else you like, the time quantities are seconds     DOSSiteInterval     1     DOSBlockingPeriod   10     #DOSLogDir           "/var/lock/mod_evasive"
Read more

script to show all files with disk usage sizes

Normally to get the disk usage of a folder you use get properties on the rightclick or similar. However there are hidden files starting with . in their name that you can get info on, only in the terminal, using the  du -sh  command. If you have hundreds of them (which you do!) this becomes tedious. The following script gives you a directory listing with the files all indicated in file sizes and highlights on files of megabytes or gigabytes in size.  #!/bin/bash # Set Internal Field Separator to handle spaces in filenames IFS=$'\n' # Loop through all files and directories for i in $(/bin/ls -A); do        size=$(du -sh "$i" | awk '{print $1}')           # Apply colors: bold for MB, bright bold for GB      case "$size" in          *M) color="\e[1m" ;;         # Bold for Megabytes          *G) color="\e[1;97m" ;;      # Br...
Read more