certbot formerly letsencrypt client for Lets Encrypt Certificates
ATTENTION: Version 1.23.0 is the last version which can be use in Leap.
Version >= 1.24 need python3 >= 3.7
Certbot (previously, the Let's Encrypt client) is an easy-to-use automatic client that fetches and deploys
SSL/TLS certificates for your webserver.
Certbot was developed by EFF and others as a client for Let’s Encrypt and was previously known as
“the official Let’s Encrypt client” or “the Let’s Encrypt Python client.”
Certbot will also work with any other CAs that support the ACME protocol.
While there are many other clients that implement the ACME protocol to fetch certificates, Certbot is the
most extensive client and can automatically configure your webserver to start serving over HTTPS immediately.
For Apache, it can also optionally automate security tasks such as tuning ciphersuites and enabling important
security features such as HTTP → HTTPS redirects, OCSP stapling, HSTS, and upgrade-insecure-requests.
Certbot is part of EFF’s larger effort to encrypt the entire Internet. Websites need to use HTTPS to secure
the web. Along with HTTPS Everywhere, Certbot aims to build a network that is more structurally private,
safe, and protected against censorship.
-
1
derived packages
- Download package
-
Checkout Package
osc -A https://api.opensuse.org checkout home:ecsos:server/certbot && cd $_ - Create Badge
Source Files
| Filename | Size | Changed |
|---|---|---|
| README.SUSE | 0000001749 1.71 KB | |
| certbot-cli.ini.patch | 0000001694 1.65 KB | |
| certbot-fix_constants.patch | 0000011430 11.2 KB | |
| certbot.changes | 0000039023 38.1 KB | |
| certbot.cron | 0000000949 949 Bytes | |
| certbot.rpmlintrc | 0000000153 153 Bytes | |
| certbot.spec | 0000016142 15.8 KB | |
| v0.33.1.tar.gz | 0001304071 1.24 MB |
Revision 152 (latest revision is 238)
Eric Schirra (ecsos)
committed
(revision 152)
- update to 0.33.1
* Fixed
- A bug causing certbot-auto to print warnings or crash on some
RHEL based systems has been resolved.
Despite us having broken lockstep, we are continuing to release
new versions of all Certbot components during releases for the
time being, however, the only changes in this release were to
certbot-auto.
More details about these changes can be found on our GitHub repo.
- Changes from 0.33.0
* Added
- Fedora 29+ is now supported by certbot-auto. Since Python 2.x
is on a deprecation path in Fedora, certbot-auto will install
and use Python 3.x on Fedora 29+.
- CLI flag --https-port has been added for Nginx plugin
exclusively, and replaces --tls-sni-01-port. It defines the
HTTPS port the Nginx plugin will use while setting up a new
SSL vhost. By default the HTTPS port is 443.
* Changed
- Support for TLS-SNI-01 has been removed from all official
Certbot plugins.
- Attributes related to the TLS-SNI-01 challenge in
acme.challenges and acme.standalone modules are deprecated
and will be removed soon.
- CLI flags --tls-sni-01-port and --tls-sni-01-address are now
no-op, will generate a deprecation warning if used, and will
be removed soon.
- Options tls-sni and tls-sni-01 in --preferred-challenges flag
are now no-op, will generate a deprecation warning if used,
and will be removed soon.
Comments 2
Does it make sense to use systemd instead of cron? It will be easier to enable/disable in YaST and monitor errors.
I am not a friend of systemd. And certainly not from systemd cron. Sorry.