From today this blog is full encrypted by a full SSL protocol, for free. How?
You can find the repo of this blog here, it’s totally opensource. The only thing I pay is my domain, nothing else.
And now, Full SSL, thank you Github
On 1 May Github announces the full support of SSL protocol. So after some research I activated it, how? Let me explain this
The first thing you have to do is change your IPs on the DNS panel (I use Cloudflare). You can find the new specifics on Github’s documentation.
In this case add
A records with these IPs:
184.108.40.206 220.127.116.11 18.104.22.168 22.214.171.124
Add letsencrypt record on DNS
The next thing to do on your DNS panel is adding a new
CAA record, putting on the
name field the name of your custom domain and as (CA) domain name
Full SSL on Cloudflare
After that you can activate the
full encryption, go on the
Crypto section on the Cloudflare panel and switch the select box on
Settings on your repo
The last thing you have to do is enforce the
HTTPS on your repo, go on the
settings page of your github’s repo and check the
Enforce HTTPS box.
If you can’t you have to wait that the
DNS propagation and that
The last thing you can do to accelerate the process is to remove your custom domain from the
custom domain text field, save and reinsert it again.
After these steps and some times you can check if everything was fine with this command on your terminal:
dig +noall +answer example.com
You should see a result like this:
dig +noall +answer domenicoluciani.com domenicoluciani.com. 300 IN A 126.96.36.199 domenicoluciani.com. 300 IN A 188.8.131.52 domenicoluciani.com. 300 IN A 184.108.40.206 domenicoluciani.com. 300 IN A 220.127.116.11
And of course you should see the
HTTPS valid encryption on your blog, FOR FREE.
Good full encryption to everyone!