Re: [Letsencrypt-devel] Certbot in Debian Stretch

To: Christian Seiler <christian@iwakd.de>
Cc: Virgo Pärna <virgo.parna@mail.ee>, debian-devel@lists.debian.org
Subject: Re: [Letsencrypt-devel] Certbot in Debian Stretch
From: Peter Eckersley <pde@eff.org>
Date: Wed, 30 Nov 2016 13:12:11 -0800
Message-id: <[🔎] 20161130211211.GB8980@eff.org>
Mail-followup-to: Christian Seiler <christian@iwakd.de>, Virgo Pärna <virgo.parna@mail.ee>, debian-devel@lists.debian.org
In-reply-to: <[🔎] 36a3287b-2202-a6f5-61b7-bce96d79f30e@iwakd.de>
References: <[🔎] 20161122014022.GB6935@eff.org> <[🔎] m337igyfst.fsf@carbon.jhcloos.org> <[🔎] 1EDE06D9-8F62-4091-9208-3D4C57BC955A@debian.org> <[🔎] dd6164f62a9898939aae50709093aa46.squirrel@aphrodite.kinkhorst.nl> <[🔎] 92772e56-79f6-c648-d353-fbb76d6cf9a4@iwakd.de> <[🔎] 15b1a13e-c5fc-fa34-a2da-cf7d879312ea@iwakd.de> <[🔎] slrno3tl9o.99l.virgo.parna@dragon.ad.gaiasoft.ee> <[🔎] 36a3287b-2202-a6f5-61b7-bce96d79f30e@iwakd.de>

On Wed, Nov 30, 2016 at 04:19:40PM +0100, Christian Seiler wrote:
> On 11/30/2016 02:33 PM, Virgo Pärna wrote:
> > On Fri, 25 Nov 2016 15:41:45 +0100, Christian Seiler <christian@iwakd.de> wrote:
> >>
> >> is not an issue (it works fine), but I had modified the cron job to
> >> pass --renew-hook and --post-hook to certbot. (As far as I can tell,
> >> there's no way of setting these in a configuration file.) The only
> > 
> > 	I think that /etc/letsencrypt/cli.ini is supposed to work for it.
> 
> As far as I am aware this is non-standard, and all examples with
> that file name I could find would do
> 
> certbot --config /etc/letsencrypt/cli.ini
> 
> However, certbot --help paths clearly states that --config has no
> default value, so by default certbot does not read that file, and
> strace confirms it. Actually, the only files read in by certbot
> in /etc/letsencrypt are /etc/letsencrypt/renewal/$certname.conf
> and /etc/letsencrypt/archive/$certname/cert$N.pem.

The help is wrong there; that's an instance of this bug:

https://github.com/certbot/certbot/issues/3734
https://bugs.python.org/issue28742

I'm adding the --config flag you noticed as another case of that bug.  We'll
try to get a fix for that (which will probably require vendorng the argparse
library) included in upstream Certbot before Stretch freezes ;)

-- 
Peter Eckersley                            pde@eff.org
Chief Computer Scientist          Tel  +1 415 436 9333 x131
Electronic Frontier Foundation    Fax  +1 415 436 9993

Reply to:

Follow-Ups:
- Re: [Letsencrypt-devel] Certbot in Debian Stretch
  - From: Christian Seiler <christian@iwakd.de>

References:
- Certbot in Debian Stretch
  - From: Peter Eckersley <pde@eff.org>
- Re: Certbot in Debian Stretch
  - From: James Cloos <cloos@jhcloos.com>
- Re: [Letsencrypt-devel] Certbot in Debian Stretch
  - From: Harlan Lieberman-Berg <hlieberman@debian.org>
- Re: [Letsencrypt-devel] Certbot in Debian Stretch
  - From: "Thijs Kinkhorst" <thijs@debian.org>
- Re: [Letsencrypt-devel] Certbot in Debian Stretch
  - From: Christian Seiler <christian@iwakd.de>
- Re: [Letsencrypt-devel] Certbot in Debian Stretch
  - From: Christian Seiler <christian@iwakd.de>
- Re: [Letsencrypt-devel] Certbot in Debian Stretch
  - From: Virgo Pärna <virgo.parna@mail.ee>
- Re: [Letsencrypt-devel] Certbot in Debian Stretch
  - From: Christian Seiler <christian@iwakd.de>

Prev by Date: Re: dpkg no longer installs conffiles??
Next by Date: Re: Bug#846366: ITP: bcc -- Command line tools for BPF Compiler Collection (BCC)
Previous by thread: Re: [Letsencrypt-devel] Certbot in Debian Stretch
Next by thread: Re: [Letsencrypt-devel] Certbot in Debian Stretch
Index(es):
- Date
- Thread