diff options
-rw-r--r-- | README | 14 |
1 files changed, 6 insertions, 8 deletions
@@ -22,14 +22,12 @@ own executable: of the account key manager to the ACME client: data signatures are requested by writing the data to be signed to the socket. - * For certificate issuances, an optional webserver, which is spawned - by the "master" process when no service is listening on the HTTP - port. (The only challenge type currently supported is "http-01", - which requires a webserver to answer challenges.) That webserver - only processes GET and HEAD requests under the - "/.well-known/acme-challenge/" URI. By default some iptables(8) - rules are automatically installed to open the HTTP port, and removed - afterwards. + * For certificate issuances, an optional webserver which is spawned by + the "master". (The only challenge type currently supported is + "http-01", which requires a webserver to answer challenges.) That + webserver only processes GET and HEAD requests under the + "/.well-known/acme-challenge/" URI. Moreover temporary iptables(8) + rules can be automatically installed to open the HTTP port. Consult the manuals for more information. |