certbot formerly letsencrypt client for Lets Encrypt Certificates
ATTENTION: Version 1.23.0 is the last version which can be use in Leap.
Version >= 1.24 need python3 >= 3.7
Certbot (previously, the Let's Encrypt client) is an easy-to-use automatic client that fetches and deploys
SSL/TLS certificates for your webserver.
Certbot was developed by EFF and others as a client for Let’s Encrypt and was previously known as
“the official Let’s Encrypt client” or “the Let’s Encrypt Python client.”
Certbot will also work with any other CAs that support the ACME protocol.
While there are many other clients that implement the ACME protocol to fetch certificates, Certbot is the
most extensive client and can automatically configure your webserver to start serving over HTTPS immediately.
For Apache, it can also optionally automate security tasks such as tuning ciphersuites and enabling important
security features such as HTTP → HTTPS redirects, OCSP stapling, HSTS, and upgrade-insecure-requests.
Certbot is part of EFF’s larger effort to encrypt the entire Internet. Websites need to use HTTPS to secure
the web. Along with HTTPS Everywhere, Certbot aims to build a network that is more structurally private,
safe, and protected against censorship.
-
1
derived packages
- Download package
-
Checkout Package
osc -A https://api.opensuse.org checkout home:ecsos:server/certbot && cd $_ - Create Badge
Source Files
| Filename | Size | Changed |
|---|---|---|
| README.SUSE | 0000001749 1.71 KB | |
| certbot-cli.ini.patch | 0000001726 1.69 KB | |
| certbot-fix_constants.patch | 0000026515 25.9 KB | |
| certbot.changes | 0000062909 61.4 KB | |
| certbot.cron | 0000000949 949 Bytes | |
| certbot.rpmlintrc | 0000000153 153 Bytes | |
| certbot.spec | 0000018746 18.3 KB | |
| v1.10.0.tar.gz | 0001432396 1.37 MB |
Revision 187 (latest revision is 238)
Eric Schirra (ecsos)
committed
(revision 187)
- Update to 1.10.0
* Added
- Added timeout to DNS query function calls for dns-rfc2136 plugin.
- Confirmation when deleting certificates
- CLI flag --key-type has been added to specify 'rsa' or 'ecdsa' (default 'rsa').
- CLI flag --elliptic-curve has been added which takes an NIST/SECG elliptic curve.
Any of secp256r1, secp284r1 and secp521r1 are accepted values.
- The command certbot certficates lists the which type of the
private key that was used for the private key.
- Support for Python 3.9 was added to Certbot and all of its components.
* Changed
- certbot-auto was deprecated on Debian based systems.
- CLI flag --manual-public-ip-logging-ok is now a no-op, generates a
deprecation warning, and will be removed in a future release.
* Fixed
- Fixed a Unicode-related crash in the nginx plugin when running under Python 2.
- More details about these changes can be found on our GitHub repo.
Comments 2
Does it make sense to use systemd instead of cron? It will be easier to enable/disable in YaST and monitor errors.
I am not a friend of systemd. And certainly not from systemd cron. Sorry.