certbot formerly letsencrypt client for Lets Encrypt Certificates
ATTENTION: Version 1.23.0 is the last version which can be use in Leap.
Version >= 1.24 need python3 >= 3.7
Certbot (previously, the Let's Encrypt client) is an easy-to-use automatic client that fetches and deploys
SSL/TLS certificates for your webserver.
Certbot was developed by EFF and others as a client for Let’s Encrypt and was previously known as
“the official Let’s Encrypt client” or “the Let’s Encrypt Python client.”
Certbot will also work with any other CAs that support the ACME protocol.
While there are many other clients that implement the ACME protocol to fetch certificates, Certbot is the
most extensive client and can automatically configure your webserver to start serving over HTTPS immediately.
For Apache, it can also optionally automate security tasks such as tuning ciphersuites and enabling important
security features such as HTTP → HTTPS redirects, OCSP stapling, HSTS, and upgrade-insecure-requests.
Certbot is part of EFF’s larger effort to encrypt the entire Internet. Websites need to use HTTPS to secure
the web. Along with HTTPS Everywhere, Certbot aims to build a network that is more structurally private,
safe, and protected against censorship.
-
1
derived packages
- Download package
-
Checkout Package
osc -A https://api.opensuse.org checkout home:ecsos:server/certbot && cd $_ - Create Badge
Source Files
| Filename | Size | Changed |
|---|---|---|
| README.SUSE | 0000001749 1.71 KB | |
| _link | 0000000130 130 Bytes | |
| certbot-cli.ini.patch | 0000001527 1.49 KB | |
| certbot-fix_constants.patch | 0000001105 1.08 KB | |
| certbot.changes | 0000016150 15.8 KB | |
| certbot.cron | 0000000949 949 Bytes | |
| certbot.rpmlintrc | 0000000153 153 Bytes | |
| certbot.spec | 0000015786 15.4 KB | |
| v0.24.0.tar.gz | 0001149694 1.1 MB |
Revision 116 (latest revision is 238)
Eric Schirra (ecsos)
committed
(revision 116)
- update to 0.24.0
* Added
- certbot now has an enhance subcommand which allows you to
configure security enhancements like HTTP to HTTPS redirects,
OCSP stapling, and HSTS - without reinstalling a certificate.
- certbot-dns-rfc2136 now allows the user to specify the port
to use to reach the DNS server in its credentials file.
- acme now parses the wildcard field included in authorizations
so it can be used by users of the library.
* Changed
- certbot-dns-route53 used to wait for each DNS update to
propagate before sending the next one, but now it sends all
updates before waiting which speeds up issuance for multiple
domains dramatically.
- Certbot's official Docker images are now based on Alpine
Linux 3.7 rather than 3.4 because 3.4 has reached its
end-of-life.
- We've doubled the time Certbot will spend polling
authorizations before timing out.
- The level of the message logged when Certbot is being used
with non-standard paths warning that crontabs for renewal
included in Certbot packages from OS package managers may not
work has been reduced. This stops the message from being
written to stderr every time certbot renew runs.
* Fixed
- certbot-auto now works with Python 3.6.
Despite us having broken lockstep, we are continuing to release
new versions of all Certbot components during releases for the
time being, however, the only packages with changes other than
their version number were:
Comments 2
Does it make sense to use systemd instead of cron? It will be easier to enable/disable in YaST and monitor errors.
I am not a friend of systemd. And certainly not from systemd cron. Sorry.