diff options
| author | Guilhem Moulin <guilhem@fripost.org> | 2017-06-28 22:38:39 +0200 |
|---|---|---|
| committer | Guilhem Moulin <guilhem@fripost.org> | 2017-06-28 22:38:39 +0200 |
| commit | dcf25ee7dd6762d25b59e5f87eaa320a8f2be05c (patch) | |
| tree | c1734cff96d724e6e956650cfaf93415a2c1fa03 | |
| parent | 99902d8737cd01b2788ec51b06d314a36135be2c (diff) | |
Update README.
| -rw-r--r-- | README | 14 |
1 files changed, 6 insertions, 8 deletions
@@ -22,14 +22,12 @@ own executable: of the account key manager to the ACME client: data signatures are requested by writing the data to be signed to the socket. - * For certificate issuances, an optional webserver, which is spawned - by the "master" process when no service is listening on the HTTP - port. (The only challenge type currently supported is "http-01", - which requires a webserver to answer challenges.) That webserver - only processes GET and HEAD requests under the - "/.well-known/acme-challenge/" URI. By default some iptables(8) - rules are automatically installed to open the HTTP port, and removed - afterwards. + * For certificate issuances, an optional webserver which is spawned by + the "master". (The only challenge type currently supported is + "http-01", which requires a webserver to answer challenges.) That + webserver only processes GET and HEAD requests under the + "/.well-known/acme-challenge/" URI. Moreover temporary iptables(8) + rules can be automatically installed to open the HTTP port. Consult the manuals for more information. |