"When Let’s Encrypt, a free certificate authority, started issuing 90 day TLS certificates for websites, it was considered a bold move that helped push the ecosystem towards shorter certificate life times. Beforehand, certificate authorities normally issued certificate lifetimes lasting a year or more. With 4.0, Certbot is now supporting Let’s Encrypt’s new capability for six day certificates through ACME profiles and dynamic renewal at:

- 1/3rd of lifetime left
- 1/2 of lifetime left, if the lifetime is shorter than 10 days"

https://www.eff.org/deeplinks/2025/04/certbot-40-long-live-short-lived-certs

#Certbot 4.0: Long Live Short-Lived Certs!

https://www.eff.org/deeplinks/2025/04/certbot-40-long-live-short-lived-certs\

From @eff on the "Blue Bird"

#Certbot 4.0 is out and now supports short-lived certificates ! Offering shorter renewal periods.
https://www.eff.org/deeplinks/2025/04/certbot-40-long-live-short-lived-certs

Hello folks,

I run #certbot 3.1.,.1 on #FreeBSD and I have an issue:
File "/usr/local/lib/python3.11/site-packages/certbot/crypto_util.py", line 185, in <module>
) -> Tuple[acme_crypto_util.Format, util.CSR, List[str]]:
^^^^^^^^^^^^^^^^^^^^^^^
AttributeError: module 'acme.crypto_util' has no attribute 'Format'

I'm not a #python dev and I need help to solve This issue.

Could some ome help me?

Haven’t used Certbot for a very long time, and right now start cleaning older certificates on a old server to start preparing migration, and now I noticed this really weird, stupid and mostly dangerous behavior: if you use the command `revoke`, it won’t ask if you are sure if you want to revoke the certificate, but it will ask you if you want to delete the certificate locally…. The revoke step is COMPLETELY SILENT.

#TLS #ACME
Il n'y a de page Wikipédia pour #certbot qu'en tchèque. https://cs.wikipedia.org/wiki/Certbot

Any #nginx #networking #jellyfin experts having a quite saturday and willing to help me get my #selfhosted journey underway?

I've got a domain and a box with some working apps on it but I can't get #certbot to recognise my DNS and am struggling to get the #ReverseProxy working.

There's a few too many moving parts for my little brain, I'd really value a helping hand to get me up and running, please.

Is anyone out there using #nginx with #certbot and #porkbun for DNS/wildcard cert renewals?

Having issues with the setup and have some questions.

Por fin me puse a arreglar la automatización para renovar los certificados de #LetsEncrypt. Al final era una tontería como una casa, me faltaba un plugin de #certbot y tenía que usar rutas absolutas a unos ficheros de credenciales de #Cloudflare.

Justo a tiempo: https://comopiensodigo.com/@comopiensodigo/posts/c0e066cf-a52d-45ad-85a0-c875d07fbe40

New Post: How to Install PeerTube on Ubuntu VPS
#activitypub #certbot #fediverse #installguide #letsencrypt #nginx #nodejs #opensource #peertube #postgresql #redis #selfhosting #selfhosted #ubuntu #videostreaming #vpsguide #yarn #Cloud #Guides #VPS
https://blog.radwebhosting.com/how-to-install-peertube-on-ubuntu-vps

Step-by-Step Guide to Install NetBox on Ubuntu VPS
#certbot #gunicorn #installguide #ipaddressmanagement #letsencrypt #netbox #nginx #postgresql #python #redis #ubuntu #Cloud #Guides #VPS
https://blog.radwebhosting.com/step-by-step-guide-to-install-netbox-on-ubuntu-vps

I started a discussion with fellow #sysadmin about updating #BIND / #named config to migrate from the overly permissive allow-update {…} stanzas to the more restricted update-policy {…} stanzas using targeted grant statements.

The idea being to allow the #acme client to only be able to update (add / delete) _acme-challenge TXT instead of any record in the zone.

Old:

allow-update {
TSIG_KEY_NAME;
};

New:

update-policy {
grant TSIG_KEY_NAME name _acme-challenge.example.net TXT;
};

Install and Run Modoboa Email Server on Debian VPS (Complete Guide)
#certbot #debian #email #fail2ban #installguide #letsencrypt #mailserver #modoboa #python #vpsguide #webmail #Cloud #Guides #VPS
https://blog.radwebhosting.com/install-and-run-modoboa-email-server-on-debian-vps-complete-guide

Wrote about Prosody Certificate Management With Nginx and Certbot - https://blog.sahilister.in/2025/01/prosody-certificate-management-with-nginx-and-certbot/

Moved my VPS from #Rocky 9 to #NetBSD 10.1. Surprisingly it works fine - sans a quirky GRE implementation... I made it work in the end but all other network devices are able to use any subnet on a GRE interface.

In the end I have:
- #wireguard to multiple #MikroTik routers
- GRE tunnels to all of the routers
- #FRR running #BGP
- #haproxy doing reverse proxy for #Nextcloud and other services
- #certbot renewing Let's Encrypt certificate

Step-by-Step Guide to Install NetBox on Ubuntu VPS
#certbot #gunicorn #installguide #ipaddressmanagement #letsencrypt #netbox #nginx #postgresql #python #redis #ubuntu #Cloud #Guides #VPS
https://blog.radwebhosting.com/step-by-step-guide-to-install-netbox-on-ubuntu-vps