The only disadvantage I see is that all my personal subdomains (e.g. immich.name.com and jellyfin) are forever stored in a public location. I wouldn’t call it a privacy nightmare, yet it isn’t optimal.
But how to automate wildcard certificate generation? That requires a change of the txt record and namecheap for instance got no mechanism for that to automatically happen on cert bot action
“when i get to it” is my time frame aswell, till then its a reoccurring calendar notification with instructions because past me who set this all up was a genius compared to sleep deprived current me
cron@feddit.org 2 weeks ago
The only disadvantage I see is that all my personal subdomains (e.g. immich.name.com and jellyfin) are forever stored in a public location. I wouldn’t call it a privacy nightmare, yet it isn’t optimal.
There are two workarounds:
Burnoutdv@feddit.org 2 weeks ago
But how to automate wildcard certificate generation? That requires a change of the txt record and namecheap for instance got no mechanism for that to automatically happen on cert bot action
cron@feddit.org 2 weeks ago
There are some nameserver providers that have an API.
When you register a domain, you can choose which nameserver you like. There are nameservers that work with certbot, choose one that does.
clif@lemmy.world 2 weeks ago
Namecheap supports this according to docs. I just haven’t tested yet.
clif@lemmy.world 2 weeks ago
Doesn’t caddy support that (name cheap txt mod) via a plug-in?
I haven’t tried it yet, but the plugin made it sound possible. I’m planning to automate on next expiration… When I get to it ;)
I did already compile caddy with the plugin, just haven’t generated my name cheap token and tested.
Burnoutdv@feddit.org 2 weeks ago
“when i get to it” is my time frame aswell, till then its a reoccurring calendar notification with instructions because past me who set this all up was a genius compared to sleep deprived current me