aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorGuilhem Moulin <guilhem@fripost.org>2017-06-28 22:38:39 +0200
committerGuilhem Moulin <guilhem@fripost.org>2017-06-28 22:38:39 +0200
commitdcf25ee7dd6762d25b59e5f87eaa320a8f2be05c (patch)
treec1734cff96d724e6e956650cfaf93415a2c1fa03
parent99902d8737cd01b2788ec51b06d314a36135be2c (diff)
Update README.
-rw-r--r--README14
1 files changed, 6 insertions, 8 deletions
diff --git a/README b/README
index ea8cc66..5e17a8d 100644
--- a/README
+++ b/README
@@ -22,14 +22,12 @@ own executable:
of the account key manager to the ACME client: data signatures are
requested by writing the data to be signed to the socket.
- * For certificate issuances, an optional webserver, which is spawned
- by the "master" process when no service is listening on the HTTP
- port. (The only challenge type currently supported is "http-01",
- which requires a webserver to answer challenges.) That webserver
- only processes GET and HEAD requests under the
- "/.well-known/acme-challenge/" URI. By default some iptables(8)
- rules are automatically installed to open the HTTP port, and removed
- afterwards.
+ * For certificate issuances, an optional webserver which is spawned by
+ the "master". (The only challenge type currently supported is
+ "http-01", which requires a webserver to answer challenges.) That
+ webserver only processes GET and HEAD requests under the
+ "/.well-known/acme-challenge/" URI. Moreover temporary iptables(8)
+ rules can be automatically installed to open the HTTP port.
Consult the manuals for more information.