無料SSLのLet's EncryptでNginxのSSLを設定したら衝撃的なまでに簡単過ぎて感動した

git clone https://github.com/letsencrypt/letsencrypt
cd letsencrypt

$ sudo service nginx stop
$ ./letsencrypt-auto certonly -a standalone --server https://acme-v01.api.letsencrypt.org/directory \
 --agree-dev-preview -d gohaaan.com

IMPORTANT NOTES:
 - If you lose your account credentials, you can recover through
   e-mails sent to hogehoge@example.com
 - Congratulations! Your certificate and chain have been saved at
   /etc/letsencrypt/live/gohaaan.com/fullchain.pem. Your cert will
   expire on 2016-05-06. To obtain a new version of the certificate in
   the future, simply run Let's Encrypt again.
 - Your account credentials have been saved in your Let's Encrypt
   configuration directory at /etc/letsencrypt. You should make a
   secure backup of this folder now. This configuration directory will
   also contain certificates and private keys obtained by Let's
   Encrypt so making regular backups of this folder is ideal.
 - If you like Let's Encrypt, please consider supporting our work by:

   Donating to ISRG / Let's Encrypt:   https://letsencrypt.org/donate
   Donating to EFF:                    https://eff.org/donate-le

$ sudo ls /etc/letsencrypt/live/gohaaan.com
cert.pem  chain.pem  fullchain.pem  privkey.pem

$ sudo vim /etc/nginx/conf.d/gohaaan.conf

ssl_certificate /etc/letsencrypt/live/gohaaan.com/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/gohaaan.com/privkey.pem;

$ sudo service nginx start