Letsencrypt and wildcard certificates

Stefano

10,838
+2/-0

Letsencrypt and wildcard certificates

« on: March 19, 2018, 04:17:33 PM »

FYI:

https://gbhackers.com/free-wildcard-ssl-certificate-lets-encrypt/

Logged

ReetP

3,730
+5/-0

Re: Letsencrypt and wildcard certificates

« Reply #1 on: March 19, 2018, 11:20:49 PM »

They have been working on ACME V2 for dehydrated for a while. Can't remember what the current status is... have a look on github.

https://github.com/lukas2511/dehydrated/issues/420

Some other bugs on it I think.

The contrib will need a bug and reviewing.

Logged

...
1. Read the Manual
2. Read the Wiki
3. Don't ask for support on Unsupported versions of software
4. I have a job, wife, and kids and do this in my spare time. If you want something fixed, please help.

Bugs are easier than you think: http://wiki.contribs.org/Bugzilla_Help

If you love SME and don't want to lose it, join in: http://wiki.contribs.org/Koozali_Foundation

Jean-Philippe Pialasse

2,760
+11/-0
aka Unnilennium

Re: Letsencrypt and wildcard certificates

« Reply #2 on: March 20, 2018, 09:42:59 AM »

According to https://letsencrypt.org/docs/client-options/ dehydrated is compatible.

Few thoughts

- This could be time to use some registrar api to populate the dns validation
- we could stop validating hosts , would be faster and less risks of failure on a not well configured subdomain
- we could start looking at one cert per domain /per virtualhost. Just have to decide then which one to use for imap pop and smtp. Probably the primary domain...

Fyi : 2 more releases since our import of v5

Logged