that built-in support for the Let's Encrypt ACME ( experimental since v2.4.33 ) since 2017 ( or at least early 2018 ) 🤯

I chanced upon this finding from the list of client options ( letsencrypt.org/docs/client-op)

Announcement blog post ( October 2017 ) : letsencrypt.org/2017/10/17/acm

And here I was running the traditional certbot+apache combination 🤦‍♂️

I checked my apt-cache for libapache2-mod-md and it was there ( though the description read 'transitional package` ).

I spent the night reading through the extensive documentation and adapting my configuration to work with ( with conditionals as well ).

Show thread

No initial run goes smooth. This was no different.
After commenting out well-documented 'Invalid command's, I finally got to start at least, only to get thrown a bunch more errors at me.

In the end, what was it? The module was still stuck with the 'experimental' ACMEv1 client.

I guess I should've backed off when I noticed the 'transitional package' label on the package before even installing it.

I'm cozying back up with good ol' . I don't it's going anywhere anytime soon.

Show thread

Fortunately, because I had thought of enabling -based configuration and not just overwriting all of my configuration, all I had to do was to a2dismod md and I was with my previous good configuration.

And the other advantage is that I don't have to take these configurations out of the main file to make it work.

When the module matures enough to be packaged for distributions, I just have to (re-)enable the module ( and restart , of course ) and I'll have md working right out of the box.

Show thread
Follow

I was just too lazy to and test the module. Maybe, I'll do it some other time. It's not like I don't have or on my cloud.

I hope the latest version will be packaged in at least with maybe.
I'm guessing might already have the right packages. At least with an LTS coming right around the corner ( even if does not have it ).

Until then ( or until I build it from source; and it works ), certbot, we're going to continue our relationship.

Sign in to participate in the conversation
Mastodon for Tech Folks

The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!