Commit message (Collapse) | Author | Age | Files | |
---|---|---|---|---|
* | Ensure fdopen is called with an integer. | Guilhem Moulin | 2017-07-01 | 1 |
| | ||||
* | webserver: improve serving logic for ACME challenge responses. | Guilhem Moulin | 2017-06-29 | 1 |
| | | | | | In particular, we now return "403 Forbidden" for /.well-known/acme-challenge/ | |||
* | webserver: open ACME challenge files with O_NOFOLLOW. | Guilhem Moulin | 2017-06-29 | 1 |
| | ||||
* | webserver: refuse to follow symlink when serving ACME challenge responses. | Guilhem Moulin | 2017-06-29 | 1 |
| | ||||
* | webserver: allow listening to multiple addresses. | Guilhem Moulin | 2017-06-28 | 1 |
| | | | | | | | | | | (Useful when dual-stack IPv4/IPv6 is not supported.) Also, change the default to listen to a UNIX-domain socket </var/run/lacme.socket>. Moreover temporary iptables rules are no longer installed. Hosts without a public HTTP daemon listening on port 80 need to set the 'listen' option to [::] and/or 0.0.0.0, and possibly set the 'iptables' option to Yes. | |||
* | Add the short description in headers and manpages. | Guilhem Moulin | 2016-06-14 | 1 |
| | ||||
* | accountd: Don't mention "Let's Encrypt" in log messages. | Guilhem Moulin | 2016-06-14 | 1 |
| | ||||
* | Refactoring to use the account key manager. | Guilhem Moulin | 2016-03-02 | 1 |
| | ||||
* | acme-slave → client; acme-webserver → webserver | Guilhem Moulin | 2015-12-18 | 1 |