aboutsummaryrefslogtreecommitdiffstats
path: root/config
diff options
context:
space:
mode:
authorGuilhem Moulin <guilhem@fripost.org>2021-02-14 17:01:17 +0100
committerGuilhem Moulin <guilhem@fripost.org>2021-02-14 20:04:40 +0100
commita903ea92dd736c560d21fe45063d4914765fa173 (patch)
treeca4f7e352cc01d1f05b63df20e4eb142f98e28ca /config
parent9dfb2cde7baf686113e49266c28940c8a564c1ca (diff)
challenge-directory now needs to be set to an *existing* directory.
Since lacme(8) spawns a builtin webserver by default the change doesn't affect default configurations. See https://bugs.debian.org/970800 for the rationale.
Diffstat (limited to 'config')
-rw-r--r--config/lacme.conf13
1 files changed, 5 insertions, 8 deletions
diff --git a/config/lacme.conf b/config/lacme.conf
index 2955984..4c7dc86 100644
--- a/config/lacme.conf
+++ b/config/lacme.conf
@@ -64,17 +64,14 @@
#
#listen = @@runstatedir@@/lacme-www.socket
-# Non-existent directory under which an external HTTP daemon is
-# configured to serve GET requests for challenge files under
-# "/.well-known/acme-challenge/" (for each virtual host requiring
-# authorization) as static files.
+# Directory under which an external HTTP daemon is configured to serve
+# GET requests for challenge files under "/.well-known/acme-challenge/"
+# (for each virtual host requiring authorization) as static files.
+# NOTE: the directory must exist and be writable by the lacme client
+# user.
#
#challenge-directory =
-# Do not symlink the challenge-directory, but copy the challenge-files
-# explictly.
-#hard-copy-challenge-directory = No
-
# username to drop privileges to (setting both effective and real uid).
# Skip privilege drop if the value is empty (not recommended).
#