What manual hooks? All the systems I’ve used LE certs in have supported fully automatic DNS challenges.
Comment on Let's Encrypt Ending Support for Expiration Notification Emails
inclementimmigrant@lemmy.world 1 day ago
Well that kind of sucks. I wish they had more tutorials about how to automate then because if you’re not using http-01 via certbot due to port 80 being blocked, which if you’re on a residential line it’s pretty common, so then you have to use dns-01 and manual hooks which isn’t exactly clear for and documented well.
catloaf@lemm.ee 1 day ago
rumba@lemmy.zip 20 hours ago
Can’t speak for OP but they can’t seem automate my network solutions DNS through plugins.
I don’t know why in the hell they are such sticklers about wild card domains. Just let me off it on any working domain, hell, force me to author on this is my wildcard.Mydomain.com. the DNS authorization is an unnecessary
catloaf@lemm.ee 15 hours ago
I mean that’s just another item in the long list of reasons you should not be using Network Solutions.
rumba@lemmy.zip 15 hours ago
You’re not wrong, but they don’t support quite a lot.
diamond@lemmy.blahaj.zone 1 day ago
If you use Caddy with ACME DNS, all of this can be automated.
If you also use Cloudflare, you can do that + traffic routing with cloudflared without any need for port forwarding .
inclementimmigrant@lemmy.world 1 day ago
Using nginx with certbot and duck DNS and I ended up using the manual option with a authentication, clean up, and post bash scripts and then final script that I called from chron job that called the scripts every three months.
Just from a beginning user of let’s encrypt, and while a software developer I’m not versed in backend development, and I found the documentation to be a bit hit or miss, understandable with a plethora of open source projects. Using certbot, because that’s the rabbit hole let’s encrypt first send you down, the documentation while available isn’t easy to navigate in my opinion and it took me a while to track down the variables used to pass down the text and the bulk examples found were all using http-01.
I just think that if your not someone with a background in tech, just wanting to get a server to and running with ssl following a bunch of other tutorials and guides, it could be a bit better to get adoption.
muntedcrocodile@lemm.ee 1 day ago
Their are multiple different way u can configure certbot to verify.
rumba@lemmy.zip 20 hours ago
And DNS is the only one available for wild card and unless you’re using a plug-in capable DNS service, They suck at it.
inclementimmigrant@lemmy.world 1 day ago
Sigh, yeah I know that and that’s not the point I was making but sure.