Re: certbot in cron - best way?

2024-02-24 Thread Michael Hekeler
> > On 2/21/24 10:07, Stuart Henderson wrote: > > You might like to investigate ~ in crontab(5), e.g. "~ 0,12" and lose > > the "sleep". > > > > Wouldn't it be better to have certbot write files into a directory > > served by httpd so you don't need the "rcctl stop" though? > > > Yes, it would

Re: certbot in cron - best way?

2024-02-21 Thread misc
On 2/21/24 10:07, Stuart Henderson wrote: You might like to investigate ~ in crontab(5), e.g. "~ 0,12" and lose the "sleep". Wouldn't it be better to have certbot write files into a directory served by httpd so you don't need the "rcctl stop" though? Yes, it would be better. Today had a

Re: certbot in cron - best way?

2024-02-21 Thread Stuart Henderson
On 2024-02-20, Odhiambo Washington wrote: > This should work: > > 0 0,12 * * * /bin/sleep 1552 && rcctl stop httpd && certbot renew && > rcctl start httpd You might like to investigate ~ in crontab(5), e.g. "~ 0,12" and lose the "sleep". Wouldn't it be better to have certbot write files into

Re: certbot in cron - best way?

2024-02-20 Thread misc
Thanks. Worked like a charm. Cheers, --fm On 2/20/24 12:54, Odhiambo Washington wrote: On Tue, Feb 20, 2024 at 6:47 PM wrote: Hi misc, Usually am updating certificates manually this way: rcctl stop httpd ; certbot certonly --standalone -d DOMAIN.org -m notifyc...@domain.org ; rcctl start

Re: certbot in cron - best way?

2024-02-20 Thread Nowarez Market
I think the best way is always to keep things in control, safe and reliable.. And often your setup directly depend on a diversified architecture, maybe with docker in the middle. Indeed before to lose public access on certificates or lost site configuration I think two times to realize a complete

Re: certbot in cron - best way?

2024-02-20 Thread Kirill A . Korinsky
Greetings, On Tue, 20 Feb 2024 16:43:27 +0100, m...@phosphorus.com.br wrote: > > Which setup are you using to automatically update certs with certbot, in > cron, and keeping /etc/httpd.conf updated accordingly? > I use records in /etc/acme-client.conf like: authority letsencrypt { api

Re: certbot in cron - best way?

2024-02-20 Thread Odhiambo Washington
On Tue, Feb 20, 2024 at 6:47 PM wrote: > Hi misc, > > Usually am updating certificates manually this way: > > rcctl stop httpd ; certbot certonly --standalone -d DOMAIN.org -m > notifyc...@domain.org ; rcctl start httpd > > but recently saw newer certificates being deployed as 0001,0002,0003 >

certbot in cron - best way?

2024-02-20 Thread misc
Hi misc, Usually am updating certificates manually this way: rcctl stop httpd ; certbot certonly --standalone -d DOMAIN.org -m notifyc...@domain.org ; rcctl start httpd but recently saw newer certificates being deployed as 0001,0002,0003 etc, like: