[Cryptography] letsencrypt.org
Jason Cooper
cryptography at lakedaemon.net
Thu Sep 14 12:26:18 EDT 2017
Hi Robin,
On Thu, Sep 14, 2017 at 01:30:28PM +0000, Robin Wood wrote:
> On Wed, 13 Sep 2017 at 23:08 Jason Cooper <cryptography at lakedaemon.net> wrote:
> > It's extremely useful, with the caveat that certificates are only valid
> > for 90 days (by design), and require admin privileges to install.
> >
> > To maximize it's usefulness, it's worth the time investment to set up a
> > cron job to automatically renew the certs. Note that this must run as
> > root (admin).
> >
>
> Mine doesn't, it does everything as a low privilege user and then has sudo
> privileges to restart apache.
So the certificate and keys are readable and writable by this
low-privilege user?
thx,
Jason.
More information about the cryptography
mailing list