Re: certbot
- Reply: Dag-Erling_Smørgrav : "Re: certbot"
- In reply to: Paul Kagan: "RE: certbot"
- Go to: [ bottom of page ] [ top of archives ] [ this month ]
Date: Sun, 21 Apr 2024 15:23:27 UTC
Just to add a little more detail…that randomized cron job ran at 12:34 (called at midnight). It runs weekly, perhaps overkill, considering the ways expirations are managed: The following certificates are not due for renewal yet: /usr/local/etc/letsencrypt/live/cloud.paulbeard.org/fullchain.pem expires on 2024-05-25 (skipped) /usr/local/etc/letsencrypt/live/paulbeard.org/fullchain.pem expires on 2024-06-15 (skipped) /usr/local/etc/letsencrypt/live/www.paulbeard.org/fullchain.pem expires on 2024-06-15 (skipped) No renewals were attempted. No hooks were run. Maybe I'll change it to monthly. On Sun, Apr 21, 2024 at 5:14 AM Paul Kagan <pkagan@videotron.ca> wrote: > I use certbot on FreeBSD 14 and it works fine there was a thread that I did > that answers this question... just to modify the script to not use the > legacy open ssl.. > > -----Message d'origine----- > De : owner-freebsd-questions@FreeBSD.org > <owner-freebsd-questions@FreeBSD.org> De la part de Souji Thenria > Envoyé : samedi 20 avril 2024 23:42 > À : paul beard <paulbeard@gmail.com>; John Levine <johnl@iecc.com> > Cc : freebsd-questions@freebsd.org > Objet : Re: certbot > > On Sun Apr 21, 2024 at 4:13 AM BST, paul beard wrote: > > The question at hand is why OP can't use something as straightforward > > as what I run. Why does he need to run it with environment variables > > where I don't? > > FreeBSD 14 uses a newer OpenSSL version, which probably disables some older > algorithms that are needed by certbot. > > You don't have this problem since you are running FreeBSD 13, which still > uses the older OpenSSL version and supports those algorithms by default. > > > > -- Paul Beard / www.paulbeard.org/