| Commit message (Collapse) | Author | Age | Files | ||
|---|---|---|---|---|---|
| ... | |||||
| | * | Provide nginx configuration snippet. | Guilhem Moulin | 2017-06-28 | 2 | |
| | | | |||||
| | * | Change the default 'min-days' from 10 to 21. | Guilhem Moulin | 2017-06-28 | 4 | |
| | | | | | | | | | | | | | This avoids expiration notices from Let's Encrypt when auto-renewal is done by a cronjob: Let's Encrypt sends a notice 19 (then 9) days before expiration. | ||||
| | * | new-cert: use File::Temp for the temporary cert filename. | Guilhem Moulin | 2017-06-28 | 1 | |
| | | | | | | | | | This ensures we aren't overwritting existing /path/to/srv.pem.new files. | ||||
| | * | webserver: allow listening to multiple addresses. | Guilhem Moulin | 2017-06-28 | 5 | |
| | | | | | | | | | | | | | | | | | | | | | (Useful when dual-stack IPv4/IPv6 is not supported.) Also, change the default to listen to a UNIX-domain socket </var/run/lacme.socket>. Moreover temporary iptables rules are no longer installed. Hosts without a public HTTP daemon listening on port 80 need to set the 'listen' option to [::] and/or 0.0.0.0, and possibly set the 'iptables' option to Yes. | ||||
| | * | new-cert: create certificate files atomically. | Guilhem Moulin | 2017-02-24 | 2 | |
| | | | |||||
| | * | new-cert: mark basicConstraints and keyUsage x509v3 extensions as critical ↵ | Guilhem Moulin | 2017-02-22 | 2 | |
| | | | | | | | | | | | | | | | in the CSR. Boulder's issue #565 "Golang errors on extensions marked critical" was fixed upstream, cf. https://github.com/letsencrypt/boulder/issues/565 . | ||||
| | * | Changelog: prefix bugfixes with '+'. | Guilhem Moulin | 2017-02-22 | 1 | |
| | | | |||||
| | * | new-cert: new CLI option "min-days" | Guilhem Moulin | 2017-02-19 | 3 | |
| | | | |||||
| | * | new-cert: sort section names if not passed explicitely. | Guilhem Moulin | 2017-02-19 | 2 | |
| | | | |||||
| | * | Ensure lacme's config file descriptor has the FD_CLOEXEC bit set. | Guilhem Moulin | 2017-02-19 | 2 | |
| | | | |||||
| | * | config-cert: import the default section of files already read. | Guilhem Moulin | 2017-02-19 | 2 | |
| | | | |||||
| | * | wibble | Guilhem Moulin | 2017-02-19 | 2 | |
| | | | |||||
| * | | Change domain part of email address to debian.org. | Guilhem Moulin | 2017-05-15 | 2 | |
| | | | |||||
| * | | Prepare new release.debian/0.2-1 | Guilhem Moulin | 2016-12-05 | 1 | |
| | | | |||||
| * | | lacme: Install /etc/lacme/lacme-certs.conf.d | Guilhem Moulin | 2016-12-05 | 1 | |
| | | | |||||
| * | | Merge tag 'upstream/0.2' into debian | Guilhem Moulin | 2016-12-05 | 7 | |
| |\| | | | | | | | Upstream version 0.2 | ||||
| | * | s/lacme-certs.d/lacme-certs.conf.d/upstream/0.2 | Guilhem Moulin | 2016-12-05 | 5 | |
| | | | |||||
| | * | "config-certs" now points to a list of files or directories. | Guilhem Moulin | 2016-12-05 | 5 | |
| | | | |||||
| | * | s/fd-conn/conn-fd/ | Guilhem Moulin | 2016-12-05 | 2 | |
| | | | |||||
| | * | Prepare new release. | Guilhem Moulin | 2016-12-03 | 1 | |
| | | | |||||
| | * | s/--fdopen/--fd-conn/ | Guilhem Moulin | 2016-12-03 | 2 | |
| | | | |||||
| | * | Precise that --socket=PATH is ignored when the config file as an "accountd" ↵ | Guilhem Moulin | 2016-12-03 | 1 | |
| | | | | | | | | | section. | ||||
| | * | Improve formatting of config files. | Guilhem Moulin | 2016-12-01 | 2 | |
| | | | |||||
| | * | wibble | Guilhem Moulin | 2016-12-01 | 1 | |
| | | | |||||
| | * | manpage: change reg ID example to 123456. | Guilhem Moulin | 2016-12-01 | 1 | |
| | | | |||||
| | * | lacme: terminate the accountd when the ACME client terminates. | Guilhem Moulin | 2016-12-01 | 1 | |
| | | | |||||
| | * | Revert "lacme: avoid spawning multiple accountd processes." | Guilhem Moulin | 2016-12-01 | 1 | |
| | | | | | | | | | | | | | This reverts commit 8faab5db6571972156f45b5838b23dbb0fadd5c4. We can't reuse the socket pair as we don't connect(2) to it. | ||||
| | * | lacme.conf: mention the default groupname for the ACME client. | Guilhem Moulin | 2016-12-01 | 1 | |
| | | | |||||
| * | | Bump Standards-Version to 3.9.8. No changes. | Guilhem Moulin | 2016-12-01 | 2 | |
| | | | |||||
| * | | lacme: Promote lacme-accountd from Suggests to Recommends. | Guilhem Moulin | 2016-12-01 | 2 | |
| | | | |||||
| * | | Refresh patches. | Guilhem Moulin | 2016-12-01 | 1 | |
| | | | |||||
| * | | Merge branch 'master' into debian | Guilhem Moulin | 2016-12-01 | 8 | |
| |\| | |||||
| | * | lacme: avoid spawning multiple accountd processes. | Guilhem Moulin | 2016-12-01 | 1 | |
| | | | |||||
| | * | lacme: add an option --quiet to avoid mentioning valid certs. | Guilhem Moulin | 2016-12-01 | 2 | |
| | | | |||||
| | * | s/priv.key/account.key/ | Guilhem Moulin | 2016-12-01 | 1 | |
| | | | |||||
| | * | wibble | Guilhem Moulin | 2016-12-01 | 1 | |
| | | | |||||
| | * | wibble | Guilhem Moulin | 2016-12-01 | 2 | |
| | | | |||||
| | * | Make lacme able to spawn lacme-accountd. | Guilhem Moulin | 2016-12-01 | 4 | |
| | | | |||||
| | * | typo | Guilhem Moulin | 2016-11-30 | 3 | |
| | | | |||||
| | * | Stop mentioning GET-based renewal, as it was removed from the ACME IETF draft. | Guilhem Moulin | 2016-11-30 | 1 | |
| | | | | | | | | | | | https://github.com/ietf-wg-acme/acme/issues/62 https://github.com/ietf-wg-acme/acme/pull/67 :-( | ||||
| | * | Manpage: update Subscriber Agreement URL to v1.1.1. | Guilhem Moulin | 2016-10-10 | 1 | |
| | | | | | | | | | Cf. https://letsencrypt.org/repository/ . | ||||
| | * | Honor Retry-After headers for certificate issuance and challenge responses. | Guilhem Moulin | 2016-06-30 | 1 | |
| | | | |||||
| | * | Add link to Boulder issue #359 (Implement Certificate Refresh). | Guilhem Moulin | 2016-06-30 | 1 | |
| | | | |||||
| | * | More useful message upon Validation Challenge failure. | Guilhem Moulin | 2016-06-30 | 1 | |
| | | | | | | | | | | | Format the problem document if the JSON has an “error” key. Cf. section 7 “Identifier Validation Challenges”. | ||||
| | * | Minor manpage fixes. | Guilhem Moulin | 2016-06-30 | 2 | |
| | | | |||||
| * | | Prepare new release.debian/0.1-1 | Guilhem Moulin | 2016-06-16 | 1 | |
| | | | |||||
| * | | Enclose Debian BTS URL with </>. | Guilhem Moulin | 2016-06-15 | 1 | |
| | | | |||||
| * | | Make the Debian release close the ITP bugs. | Guilhem Moulin | 2016-06-15 | 1 | |
| | | | |||||
| * | | wibble | Guilhem Moulin | 2016-06-15 | 1 | |
| | | | |||||
| * | | Don't link-doc from lacme-accountd to lacme. | Guilhem Moulin | 2016-06-15 | 1 | |
| | | | | | | | | | As this makes lacme-accountd depends on lacme. | ||||
