SSL StartSSL Or Lets Encrypt . Confirm

yes just change centos6 to centos7 that's just user agent identifying to letsencrypt nothing for actual issuance of ssl certificate

as to which is more stable, in terms of letsencrypt official client it's constantly in development and evolving over time - recently got renamed from letsencrypt to certbot for the client so stable wise startssl would be more stable with longer expiry times

as such centmin mod's letsencrypt integration is switching from official client to a 3rd party lighter pure shell bash script one called acme.sh which will be used in my addon wrapper script called acmetool.sh Letsencrypt - Welcome to acmetool.sh - new letsencrypt addon for Centmin Mod LEMP stacks | Centmin Mod Community

if you're manually doing it, check out acme.sh client instead GitHub - Neilpang/acme.sh: An ACME Shell script, a certbot client: acme.sh

 

no as startssl like all other web browser trusted paid ssl certificates are installed the same way as outlined at Nginx SPDY SSL Configuration - CentminMod.com LEMP Nginx web stack for CentOS and SSL - How to install an ssl certificate? | Centmin Mod Community

centmin mod nginx vhost routines if you answer yes to self-signed ssl cert, will auto setup the http/ssl nginx vhost for you first, then you just switch from self-signed ssl to paid or startssl ssl certificate as outlined below

• All steps outlined at Nginx SPDY SSL Configuration are still valid (exception is you do not need to create the ssl settings themselves as 123.08 stable and higher auto generate those when you answer yes to self-signed ssl creation during centmin.sh menu option 2) references HTTP/2 changes needed. You just need to do the unified file and file concatenation of your SSL providers provided files.
• To switch from self signed SSL to paid SSL see sections at Nginx Vhost & NSD DNS Setup (including setting for http to https redirect)

 

see outlined method 1 or method 2 for generating csr and private key at http://centminmod.com/nginx_configure_https_ssl_spdy.html#opensslcsr

 

Believe first box is for domain so

Code (Text):

domain.com
www.domain.com

2nd box, in the *.csr file you generated, open it up or in SSH just

Code (Text):

cat /path/to/your/yourdomain_com.csr

i.e. if csr file is at /usr/local/nginx/conf/ssl/domain.com/yourdomain_com.csr

Code (Text):

cat /usr/local/nginx/conf/ssl/domain.com/yourdomain_com.csr

then copy and paste csr file contents into the 2nd box

 

yes as that auto generates the domain.com.ssl.conf file for you so you just have to modify it for startssl or any paid ssl via the switch from self signed SSL to paid SSL see sections at Nginx Vhost & NSD DNS Setup

 

don't need to run mkdir for that directory as it's auto created when you answer yes to self-signed ssl generation in centmin.sh menu option 2, 22 and /usr/bin/nv cmd options

as to copying contents of files, just use cat command above SSL - StartSSL Or Lets Encrypt . Confirm | Centmin Mod Community to output contents of a file to your ssh client window screen and then copy and paste just that code

 

oh this might be helpful for renewals but similar SSL - Guide: Renewing & Reinstalling SSL Certificate on Centminmod with GoGetSSL | Centmin Mod Community

 

no no DO NOT upload and attach your ssl zip to the forums, security issue as it would contain your private key !

yes upload to server via sftp as root user or just use linux text editor like vim or nano to copy and paste contents of zip files into newly created files via sshd client

 

open .csr and .crt files locally on own computer and copy it's contents into exact file names on the server at /usr/local/nginx/conf/ssl/youromain.com directory so on /usr/local/nginx/conf/ssl/yourdomain.com you create using nano or vim the similar file names and paste the contents - basically recreating the file on the server without needing to use sftp and root user

or if your ssh client has inbuilt sftp support like with securecrt ssh client i use, you can switch between ssh and sftp within the same app to just use sftp command put to upload to the directory and use lcd, lls to locally change directory and locally list directory and cd and ls to remotely change and list directory contents.

example

 

yeah just a dummy example above but same method