Bug#921663: marked as done (Please add python-certbot update to jessie-backports)

Thu, 07 Feb 2019 13:40:14 -0800 

Your message dated Thu, 7 Feb 2019 22:35:20 +0100
with message-id <20190207213518.ga18...@mapreri.org>
and subject line Re: Bug#921663: Please add python-certbot update to 
jessie-backports
has caused the Debian Bug report #921663,
regarding Please add python-certbot update to jessie-backports
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
921663: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=921663
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message --- 
Package: python-certbot

Regarding the Let's Encrypt / TLS-SNI-01 situation I think the
python-certbot 0.28.0 update should be added to jessie-backports (for
context see bugs #887399 and #888703).

It seems to be common that people on Jessie installed python-certbot
from the jessie-backports repository. Given that the version 0.10.2
will stop working in a few days I hope this can be sorted out quickly.

(Background: Let's Encrypt will finally disable the TLS-SNI-01 domain
validation method due to security issues, which in older certbot
versions was the standard for apache+nginx setups.)

--- End Message ---
--- Begin Message --- 
Hi,

On Thu, Feb 07, 2019 at 07:44:50PM +0100, Hanno Böck wrote:
> Regarding the Let's Encrypt / TLS-SNI-01 situation I think the
> python-certbot 0.28.0 update should be added to jessie-backports (for
> context see bugs #887399 and #888703).

jessie-backpors is closed and can't accept any new upload anymore.

Furthermore, jessie-backports was declared as not supported once jessie
became EOL and went on to be security-maintained by the LTS team, as
announced on
https://lists.debian.org/debian-backports-announce/2018/07/msg00000.html
(ML that you should be subscribed to if you use backports).

So I can only recommend you to upgrade the host you use to run
letsencrypt to something newer.

-- 
regards,
                        Mattia Rizzolo

GPG Key: 66AE 2B4A FCCF 3F52 DA18  4D18 4B04 3FCD B944 4540      .''`.
more about me:  https://mapreri.org                             : :'  :
Launchpad user: https://launchpad.net/~mapreri                  `. `'`
Debian QA page: https://qa.debian.org/developer.php?login=mattia  `-

Attachment: signature.asc
Description: PGP signature


--- End Message ---

Reply via email to