Mailing List Archive | ports@openbsd.org

From:: Landry Breuil <landry@openbsd.org>
Subject:: Re: security/acme.sh: new port (version 3.0.9)
To:: "Kirill A. Korinsky" <kirill@korins.ky>
Cc:: OpenBSD ports <ports@openbsd.org>
Date:: Thu, 14 Nov 2024 15:10:36 +0100

Download raw body.

Thread

2024-11-14 13:30 Kirill A. Korinsky:
security/acme.sh: new port (version 3.0.9)
- 2024-11-14 14:10 Landry Breuil:
  security/acme.sh: new port (version 3.0.9)
- - 2024-11-14 14:27 Stuart Henderson:
    security/acme.sh: new port (version 3.0.9)
  - - 2024-11-14 14:43 Kirill A. Korinsky:
      security/acme.sh: new port (version 3.0.9)

Le Thu, Nov 14, 2024 at 02:30:24PM +0100, Kirill A. Korinsky a écrit :
> ports@,
> 
> I'd like to import another ACME client: acme.sh which is written as shell
> script (works on ksh) and supports a lot of DNS providers out of the box:
> https://github.com/acmesh-official/acme.sh/tree/master/dnsapi
> 
> At ports we have uacme, which also supports DNS-01 challenge as well, but it
> requires development of the script to support DNS providers which quite
> possible is supported by acme.sh
> 
> Tested on -current/amd64 against ClouDNS. Works like a charm.
> 
> Feedback? Ok?

I'd just like to stress loudly that by default acme.sh uses zerossl and
not letsencrypt CA, cf https://github.com/acmesh-official/acme.sh/wiki/Change-default-CA-to-ZeroSSL
dunno if thats better/worse but important to know imo.

im using acme.sh at work on debian against gandi API and dns-01 works
fine.

Landry

2024-11-14 13:30 Kirill A. Korinsky:
security/acme.sh: new port (version 3.0.9)
- 2024-11-14 14:10 Landry Breuil:
  security/acme.sh: new port (version 3.0.9)
- - 2024-11-14 14:27 Stuart Henderson:
    security/acme.sh: new port (version 3.0.9)
  - - 2024-11-14 14:43 Kirill A. Korinsky:
      security/acme.sh: new port (version 3.0.9)