[Polkadot Wiki Migration] Setup Secure WebSockets #35
Conversation
CrackTheCode016
commented
Sep 17, 2024
CrackTheCode016
commented
![github-actions[bot]](https://avatars.githubusercontent.com/in/15368?s=60&v=4){kind=small}
|
Scan for Vale false positives. Resolved convos = made it on the update list and should go away now. I left comments for the legit flags with suggested edits. Thank you! |
|
|
||
| ## Secure a WS Port | ||
|
|
||
| A non-secure WebSocket port can be converted to a secure WSS port by placing it behind an SSL-enabled proxy. This can be used to secure a bootnode or secure a RPC server. The SSL-enabled apache2/nginx/other proxy server redirects requests to the internal WebSocket and converts it to a secure (WSS) connection. For this, you will need an SSL certificate for which you can use a service like LetsEncrypt or self-signing. |
There was a problem hiding this comment.
📝 [vale] reported by reviewdog 🐶
[Papermoon.Acronyms] Spell out 'WSS', if it's unfamiliar to the audience.
|
|
||
| ## Secure a WS Port | ||
|
|
||
| A non-secure WebSocket port can be converted to a secure WSS port by placing it behind an SSL-enabled proxy. This can be used to secure a bootnode or secure a RPC server. The SSL-enabled apache2/nginx/other proxy server redirects requests to the internal WebSocket and converts it to a secure (WSS) connection. For this, you will need an SSL certificate for which you can use a service like LetsEncrypt or self-signing. |
There was a problem hiding this comment.
📝 [vale] reported by reviewdog 🐶
[Papermoon.Acronyms] Spell out 'WSS', if it's unfamiliar to the audience.
|
|
||
| ## Secure a WS Port | ||
|
|
||
| A non-secure WS port can be converted to a secure WSS port by placing it behind an SSL-enabled proxy. This can be used to secure a bootnode or secure a RPC server. The SSL-enabled apache2/nginx/other proxy server redirects requests to the internal WebSocket and converts it to a secure (WSS) connection. For this, you will need an SSL certificate for which you can use a service like LetsEncrypt or self-signing. |
There was a problem hiding this comment.
📝 [vale] reported by reviewdog 🐶
[Papermoon.Acronyms] Spell out 'WSS', if it's unfamiliar to the audience.
|
|
||
| ## Secure a WS Port | ||
|
|
||
| A non-secure WS port can be converted to a secure WSS port by placing it behind an SSL-enabled proxy. This can be used to secure a bootnode or secure a RPC server. The SSL-enabled apache2/nginx/other proxy server redirects requests to the internal WebSocket and converts it to a secure (WSS) connection. For this, you will need an SSL certificate for which you can use a service like LetsEncrypt or self-signing. |
There was a problem hiding this comment.
📝 [vale] reported by reviewdog 🐶
[Papermoon.Acronyms] Spell out 'WSS', if it's unfamiliar to the audience.
|
|
||
| ## Secure a WebSocket Port | ||
|
|
||
| A non-secure WS port can be converted to a secure WSS port by placing it behind an SSL-enabled proxy. This can be used to secure a bootnode or secure a RPC server. The SSL-enabled apache2/nginx/other proxy server redirects requests to the internal websocket and converts it to a secure (WSS) connection. For this, you will need an SSL certificate for which you can use a service like LetsEncrypt or self-signing. |
There was a problem hiding this comment.
📝 [vale] reported by reviewdog 🐶
[Papermoon.Acronyms] Spell out 'WSS', if it's unfamiliar to the audience.
|
|
||
| ## Secure a WebSocket Port | ||
|
|
||
| A non-secure WS port can be converted to a secure WSS port by placing it behind an SSL-enabled proxy. This can be used to secure a bootnode or secure a RPC server. The SSL-enabled apache2/nginx/other proxy server redirects requests to the internal websocket and converts it to a secure (WSS) connection. For this, you will need an SSL certificate for which you can use a service like LetsEncrypt or self-signing. |
There was a problem hiding this comment.
🚫 [vale] reported by reviewdog 🐶
[Vale.Spelling] Did you really mean 'websocket'?
|
|
||
| ## Secure a WebSocket Port | ||
|
|
||
| A non-secure WS port can be converted to a secure WSS port by placing it behind an SSL-enabled proxy. This can be used to secure a bootnode or secure a RPC server. The SSL-enabled apache2/nginx/other proxy server redirects requests to the internal websocket and converts it to a secure (WSS) connection. For this, you will need an SSL certificate for which you can use a service like LetsEncrypt or self-signing. |
There was a problem hiding this comment.
🚫 [vale] reported by reviewdog 🐶
[Papermoon.CustomDictionary] Did you really mean 'websocket'?
|
|
||
| ## Secure a WebSocket Port | ||
|
|
||
| A non-secure WS port can be converted to a secure WSS port by placing it behind an SSL-enabled proxy. This can be used to secure a bootnode or secure a RPC server. The SSL-enabled apache2/nginx/other proxy server redirects requests to the internal websocket and converts it to a secure (WSS) connection. For this, you will need an SSL certificate for which you can use a service like LetsEncrypt or self-signing. |
There was a problem hiding this comment.
📝 [vale] reported by reviewdog 🐶
[Papermoon.Acronyms] Spell out 'WSS', if it's unfamiliar to the audience.
|
As title: General Infrastructure
nav:
- index.md
- 'Setup Secure WebSocket': setup-secure-wss.mdI had a bit of a tough time trying to find the page hahah 😆 |
| ```bash | ||
| sudo openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout /etc/ssl/private/selfsigned.key -out /etc/ssl/certs/selfsigned.crt | ||
| sudo openssl dhparam -out /etc/ssl/certs/dhparam.pem 2048 | ||
| ``` |
There was a problem hiding this comment.
This command can be moved to a code snippet. Also, It might be helpful to include a brief explanation before or after the command to clarify its function.
| ```bash | ||
| apt install apache2 | ||
| a2dismod mpm_prefork | ||
| a2enmod mpm_event proxy proxy_html proxy_http proxy_wstunnel rewrite ssl | ||
| ``` |
There was a problem hiding this comment.
This should be moved to a code snippet
Co-authored-by: Nicolás Hussein <80422357+nhussein11@users.noreply.github.com>
