Unterschiede

Hier werden die Unterschiede zwischen zwei Versionen angezeigt.

--- letsencrypt [2024-07-27 22:24:16] – angelegt david
+++ letsencrypt [2024-07-27 23:00:13] (aktuell) – [mit hook] david
@@ Zeile 87: / Zeile 87: @@
     exit
 fi
+EC_NAME="${EC_NAME:-secp384r1}"
+RSA_SIZE="${RSA_SIZE:-4096}"
 certbot_create () {
@@ Zeile 93: / Zeile 96: @@
 KEY_TYPE="ecdsa"
-EC_NAME="secp384r1"
 certbot_create
 KEY_TYPE="rsa"
-RSA_SIZE="4096"
 certbot_create
@@ Zeile 108: / Zeile 109: @@
   > EMAIL="letsencrypt@example.com"
-  ECDSA
-  > KEY_TYPE="ecdsa"
   > EC_NAME="secp384r1"
-  RSA
-  > KEY_TYPE="rsa"
   > RSA_SIZE="4096"
+  # choose one
+  # ECDSA
+  > KEY_TYPE="ecdsa"
+  # RSA
+  > KEY_TYPE="rsa"
   > certbot certonly -d "${DOMAIN}" -d "*.${DOMAIN}" -n -m "${EMAIL}" --agree-tos --no-eff-email --expand --key-type "${KEY_TYPE}" --elliptic-curve "${EC_NAME}" --rsa-key-size "${RSA_SIZE}" --cert-name "${KEY_TYPE}-${DOMAIN}" --preferred-challenges dns --dns-cloudflare --dns-cloudflare-propagation-seconds 30 --dns-cloudflare-credentials /etc/letsencrypt/cloudflare.ini
@@ Zeile 121: / Zeile 125: @@
   > certbot renew
+  > certbot renew --post-hook /usr/local/sbin/certbot-post-hook.sh
 mit ''%%--dry-run%%'' und ''%%--test-cert%%'' kann man testen (siehe man page) \\
@@ Zeile 164: / Zeile 169: @@
 cat /etc/letsencrypt/live/*/chain.pem > /etc/letsencrypt/live/chain.pem
-service nginx restart 2> /dev/null
+systemctl restart nginx 2> /dev/null
 </code>