Hi Sebastian,
On 04/01/18 13:37, Sebastian Schmidt via Unbound-users wrote:
> Hello,
>
> I'm wondering if unbound has a method where a new certificate can be loaded
> without restarting unbound. This would be helpful when loading for
> short-lived (1 day) DNSCrypt certificates and potentially
Hi Sebastian,
There is currently no easy way to rotate the certificates without
restarting unbound.
You can gracefully rotate certs by using
https://github.com/NLnetLabs/unbound/commit/52e2331dd495ca820c631d9aab6649455cb0c6e5#diff-47ddff7bf6b45ab98520775e2a29b9fd
to advertise new certs while
Hello,
I'm wondering if unbound has a method where a new certificate can be loaded
without restarting unbound. This would be helpful when loading for short-lived
(1 day) DNSCrypt certificates and potentially for TLS certs from Let's Encrypt
(3 Months). Ideally unbound would run forever
