this post was submitted on 13 Jun 2024
1271 points (98.8% liked)

linuxmemes

21198 readers
936 users here now

Hint: :q!


Sister communities:


Community rules (click to expand)

1. Follow the site-wide rules

2. Be civil
  • Understand the difference between a joke and an insult.
  • Do not harrass or attack members of the community for any reason.
  • Leave remarks of "peasantry" to the PCMR community. If you dislike an OS/service/application, attack the thing you dislike, not the individuals who use it. Some people may not have a choice.
  • Bigotry will not be tolerated.
  • These rules are somewhat loosened when the subject is a public figure. Still, do not attack their person or incite harrassment.
  • 3. Post Linux-related content
  • Including Unix and BSD.
  • Non-Linux content is acceptable as long as it makes a reference to Linux. For example, the poorly made mockery of sudo in Windows.
  • No porn. Even if you watch it on a Linux machine.
  • 4. No recent reposts
  • Everybody uses Arch btw, can't quit Vim, and wants to interject for a moment. You can stop now.

  • Please report posts and comments that break these rules!

    founded 1 year ago
    MODERATORS
     

    Couldn’t find anything with less pixels, please save to disk and remove resolution yourself ❤️

    you are viewing a single comment's thread
    view the rest of the comments
    [–] ricecake@sh.itjust.works 0 points 4 months ago (2 children)

    I'll be honest, I've had times where there's the "simple" solution, and "the solution I remember off the top of my head", and 10/10 the one that's happening is the one that I remember because I just did it last week.

    I have no desire to google the arguments for self signing a cert with openssl, and I cannot remember which webserver wants the cabundle and the public cert in the same file. If I had done it even kinda recently I'd still remember what to poke in the certbot config.

    [–] bl_r@lemmy.dbzer0.com 4 points 4 months ago (1 children)

    If you have no desire to do rudimentary googling for a group project in college, that sounds like you aren’t a very helpful teammate. Last time I generated certs I used the first stack overflow result and was done in minutes, there’s no excuse.

    [–] ricecake@sh.itjust.works 1 points 4 months ago (1 children)

    This is confusing to me, because the point of the request seems to be "get a certificate", not "get a self signed certificate generated by running the openssl command". If you know how to get the result, it doesn't really matter if you remembered offhand the shitty way or the overkill way.

    Is it really more helpful to say "I remember how to do this, but let me lookup a different way that doesn't use the tools I'm familiar with"?

    [–] SexualPolytope@lemmy.sdf.org 0 points 4 months ago (1 children)

    Okay, I may be the stupid one here. But after a quick search, I don't see an obvious way to generate self-signed certs using certbot. Even letsencrypt's own website suggests using openssl.

    [–] ricecake@sh.itjust.works 1 points 4 months ago (1 children)

    I think they generated real certs, rather than self signed.

    [–] SexualPolytope@lemmy.sdf.org 0 points 4 months ago (1 children)

    Then that's actually against what was wanted. To get real certs, you have to open up the server to the internet.

    [–] ricecake@sh.itjust.works 0 points 4 months ago

    That's not the case, you just need to be able to make an outbound connection.

    The minutiae of how certbot works or if that specific person actually did it right or wrong is kind of aside the point of my "intended to be funny but seemingly was not" comment about how sometimes the easiest solution to implement is the one you remember, even if it's overkill for the immediate problem.

    [–] SexualPolytope@lemmy.sdf.org 1 points 4 months ago (1 children)

    Just say no if you don't want to do something. I don't understand why people think fucking shit up in the guise of helping is more acceptable than admitting that you can't (or maybe just don't want to) do something.

    [–] ricecake@sh.itjust.works 0 points 4 months ago (1 children)

    Do you think that, in this example, using certbot is fucking shit up, or breaking something?

    The thing about overkill is that it does work. If you're accustomed to using a solution in a professional setting, it's probably both overkill and also vastly more familiar than the bare minimum required for a class project that would be entirely unacceptable in a professional setting.

    In OPs anecdote, they did get their certificates, so I don't quite see your "intentionally fucking things up" claim as what's happening.

    [–] SexualPolytope@lemmy.sdf.org 1 points 4 months ago* (last edited 4 months ago)

    To me, (and it seems for OP as well), installing snap on RHEL in itself is fucking things up.