Le 01/09/2018 à 14:52, Turritopsis Dohrnii Teo En Ming a écrit :
> Step-by-Step Tutorial: How to Deploy cPanel Web Hosting Control Panel
> version 11.74 on CentOS 7.5 Linux Server version 1805 in Amazon AWS
> Cloud
Just a suggestion. I don't think this mailing list is the right place
for
I use something like this script to renew my SMTP and IMAP certificates
(/etc/cron.weekly/certbot-renew):
#!/bin/sh
hostcert=/etc/letsencrypt/live/mail.example.com
certlink="$(readlink "${hostcert}/cert.pem")"
test -x /usr/bin/certbot || exit 72
certbot certonly --quiet --standalone
On September 2, 2018 1:12:58 AM GMT+07:00, Rainer Duffner
:
>I’m pretty sure LE creates a new private key, too.
>From a cursory glance at lego’s certificate directory on a server with
>a couple of dozens of LE certificates at least.
>
>After all, changing the private key is what this is all
On Sep 1, 2018, at 12:10 PM, Rainer Duffner wrote:
>
>> Am 01.09.2018 um 12:51 schrieb Pete Biggs :
>>
>> That was until LetsEncrypt comes along - it has the backing of some big
>> names and *IS* an effective business model for small and private
>> customers.
>
> What *is* the business model
On 01.09.2018 20:12, Rainer Duffner wrote:
Am 01.09.2018 um 18:00 schrieb Leon Fauster via CentOS:
Out of curiosity - do you change also the private key every time?
when renewing a certificate the private key should also be changed;
other ways the renewal because of short validity period
Could you please not post self-promotional “tutorials” to the list? There are
many questionable suggestions in this tutorial, and it doesn’t appear you
should be writing as an authority on the subject.
If you have questions about anything CentOS related to help you better
understand the
Am 01.09.2018 um 20:27 schrieb Valeri Galtsev:
I just checked on my box and confirm that yes, with every renewal of
certificate new key is created. I should realize that fact even before
looking, as it is asymmetric encryption pair, thus the new pair cert+key
is generated (and the cert
On 9/1/18 1:12 PM, Rainer Duffner wrote:
Am 01.09.2018 um 18:00 schrieb Leon Fauster via CentOS :
Out of curiosity - do you change also the private key every time?
I’m pretty sure LE creates a new private key, too.
I just checked on my box and confirm that yes, with every renewal of
> Am 01.09.2018 um 18:00 schrieb Leon Fauster via CentOS :
>
> Out of curiosity - do you change also the private key every time?
I’m pretty sure LE creates a new private key, too.
From a cursory glance at lego’s certificate directory on a server with a couple
of dozens of LE certificates
> Am 01.09.2018 um 12:51 schrieb Pete Biggs :
>
> That was until LetsEncrypt comes along - it has the backing of some big
> names and *IS* an effective business model for small and private
> customers.
What *is* the business model of Let’s Encrypt?
Are they going to issue „Pro“ certificates
Am 01.09.2018 um 02:06 schrieb Warren Young :
>
> I’ve been running some of my domains on Let’s Encrypt for years now, and have
> never had a single user complain to me that my certs are changing too often.
Out of curiosity - do you change also the private key every time?
--
LF
Step-by-Step Tutorial: How to Deploy cPanel Web Hosting Control Panel version
11.74 on CentOS 7.5 Linux Server version 1805 in Amazon AWS Cloud
Secondary Subject/Topic: How to Setup a New Startup Web Hosting Company Using
cPanel Web Hosting Control Panel version 11.74, CentOS 7.5 Linux Server
>
> And for other services like IMAP, SMTP, LDAP (maybe not LDAP) constant
> changing certs even with a long lived root may get old for your customers.
Why? I have corporate systems on 2 year commercial CA signed
certificates and personal servers on 90 day LetsEncrypt ones - my users
of IMAP
>
> Your IMAP server can use those files and may then respond to
> requests for IMAP over SSL/TLS on e.g. port 993. Port 143 is for
> unencrypted IMAP, so in that case certificates are not relevant at
> all.
Well, apart from STARTTLS ...
P.
___
>
> so - if you want to get certificates for an imap only server, you will
> have to setup an webserver for the challenge. or deal with your dns server.
>
Having just setup up some LetsEncrypt certificates on a CentOS server:
Certbot automates the process - if you have a webserver running, it
On 31.08.2018 21:31, Michael Schumacher wrote:
certbot works only with ports 80 or 443? Can lego work with with IMAP
ports like 143 or 993? The documentation is not very clear.
in case of other then Webserver you use ACME-DNS
just for a simple ACME client that is capable for ACME-DNS use
16 matches
Mail list logo
