Hi, is it possible to renew wildcard domain automatically without dns intervention?
Hi, Edi,
@daniel15 kindly told me there is help named "acme-dns" :)
The overview described in github repository is:
Limited DNS server with RESTful HTTP API to handle ACME DNS challenges easily and securely.
Relatively, it seems more difficult than to use certbot renew and cron.
certbot renew
Besides, I haven't used it yet because I'm moving to OpenBSD's acme-client.
Heddi, thanks for sharing your tutorial. Reading trough the manual, doesn't seem like the openbsd acme-client supports DNS challenge. Any thoughts?
Hello, Rafael.
Sorry that I knew little about non-http-01 challenges with OpenBSD's acme-client. You might be perhaps right. acme-client's documentation says:
acme-client
acme-client implements the “http-01” challenge type
According to the original writer, Kristaps, it had -t option to use custom challenges, but they were "too system-specific to provide in a safe manner".
-t
Thanks!
Are you sure you want to hide this comment? It will become hidden in your post, but will still be visible via the comment's permalink.
Hide child comments as well
Confirm
For further actions, you may consider blocking this person and/or reporting abuse
We're a place where coders share, stay up-to-date and grow their careers.
Hi,
is it possible to renew wildcard domain automatically without dns intervention?
Hi, Edi,
@daniel15 kindly told me there is help named "acme-dns" :)
The overview described in github repository is:
Relatively, it seems more difficult than to use
certbot renewand cron.Besides, I haven't used it yet because I'm moving to OpenBSD's acme-client.
Heddi, thanks for sharing your tutorial. Reading trough the manual, doesn't seem like the openbsd acme-client supports DNS challenge. Any thoughts?
Hello, Rafael.
Sorry that I knew little about non-http-01 challenges with OpenBSD's
acme-client.You might be perhaps right. acme-client's documentation says:
According to the original writer, Kristaps, it had
-toption to use custom challenges, but they were "too system-specific to provide in a safe manner".Thanks!