Create accountLogin

Recent searches

No recent searches

Search options

Only available when logged in.
med-mastodon.com is one of the many independent Mastodon servers you can use to participate in the fediverse.
Medical community on Mastodon

Administered by:

Server stats:

369
active users

med-mastodon.com: AboutProfiles directoryPrivacy policy

Mastodon: AboutGet the appKeyboard shortcutsView source codev4.3.8

#acmesh

0 posts0 participants0 posts today
Continued thread
Public
Harald

@tootbrute @sbb

In case you are interested how I solved having a publicly signed SSL certificate for a home server not connected to the Internet, here is what I did:

codeberg.org/harald/Codeschnip

The downside: there seems to be no way without having a registered domain. It took me unnecessary time to accept this. The upside: taking the step to get yourself a domain is simpler and cheaper than I was aware of and with the right tool, the rest was easy enough.

Forgejo: Beyond coding. We Forge.Codeschnipselnotizen/notes/Public_Cert_In_Home_Network.md at mainCodeschnipselnotizen - Code snippets and notes
#dns#homeserver#acmesh
Public
DrScriptt

I started a discussion with fellow #sysadmin about updating #BIND / #named config to migrate from the overly permissive allow-update {…} stanzas to the more restricted update-policy {…} stanzas using targeted grant statements.

The idea being to allow the #acme client to only be able to update (add / delete) _acme-challenge TXT instead of any record in the zone.

Old:

allow-update {
TSIG_KEY_NAME;
};

New:

update-policy {
grant TSIG_KEY_NAME name _acme-challenge.example.net TXT;
};

#acmesh#certbot
Public *
Olivier Mehani

New blog post: Renew DNS-01 Let’s Encrypt certificates with Acme.sh, Docker, SaltStack and Gandi LiveDNS

The HTTP-based challenge to issue LetsEncrypt certificates can’t be used for internal or non-HTTP servers. This post describes the use of acme.sh in Docker to issue and renew certificates over DNS via SaltStack.

https://blog.narf.ssji.net/2024/09/30/renew-dns-01-lets-encrypt-certificates-with-acme-sh-docker-saltstack-and-gandi-livedns/

#AcmeSh #Docker #GandiLiveDNS #LetSEncrypt #PGP #SaltStack #engineering #security #sysadmin #tip

Narf - The blagosphere got me... · Renew DNS-01 Let’s Encrypt certificates with Acme.sh, Docker, SaltStack and Gandi LiveDNS - NarfThe HTTP-based challenge to issue LetsEncrypt certificates can't be used for internal or non-HTTP servers. This post describes the use of acme.sh in Docker to issue and renew certificates over DNS via SaltStack.
Public *
Olivier Mehani

New blog post: Renewn DNS-01 Let’s Encrypt certificates with Acme.sh, Docker, SaltStack and Gandi LiveDNS

The HTTP-based challenge to issue LetsEncrypt certificates can’t be used for internal or non-HTTP servers. This post describes the use of acme.sh in Docker to issue and renew certificates over DNS via SaltStack.

https://blog.narf.ssji.net/2022/10/28/renewn-dns-01-lets-encrypt-certificates-with-acme-sh-docker-saltstack-and-gandi-livedns/

#AcmeSh #Docker #GandiLiveDNS #LetSEncrypt #PGP #SaltStack #wip #engineering #security #sysadmin #tip

Narf - The blagosphere got me... · Renew DNS-01 Let’s Encrypt certificates with Acme.sh, Docker, SaltStack and Gandi LiveDNS - NarfThe HTTP-based challenge to issue LetsEncrypt certificates can't be used for internal or non-HTTP servers. This post describes the use of acme.sh in Docker to issue and renew certificates over DNS via SaltStack.
Public *
Olivier Mehani

New blog post: Renew DNS-01 Let’s Encrypt certificates with Acme.sh, Docker, SaltStack and Gandi LiveDNS

The HTTP-based challenge to issue LetsEncrypt certificates can’t be used for internal or non-HTTP servers. This post describes the use of acme.sh in Docker to issue and renew certificates over DNS via SaltStack.

https://blog.narf.ssji.net/2022/10/28/renew-dns-01-lets-encrypt-certificates-with-acme-sh-docker-saltstack-and-gandi-livedns/

#AcmeSh #Docker #GandiLiveDNS #LetSEncrypt #PGP #SaltStack #wip #engineering #security #sysadmin #tip

Narf - The blagosphere got me... · Renew DNS-01 Let’s Encrypt certificates with Acme.sh, Docker, SaltStack and Gandi LiveDNS - NarfThe HTTP-based challenge to issue LetsEncrypt certificates can't be used for internal or non-HTTP servers. This post describes the use of acme.sh in Docker to issue and renew certificates over DNS via SaltStack.
ExploreLive feeds
About