From: Florian Obser Subject: Re: acme-client: add challenge hook to support dns-01 To: ports@openbsd.org Date: Wed, 21 Feb 2024 09:03:00 +0100 On 2024-02-20 22:32 +01, Christopher Zimmermann wrote: > Hi, > > this diff adds a challenge hook to acme-client. This hook can be used > to fulfill challenges. For example by putting the requested files onto > a remote http server (http-01 challenge) or by modifying dns records > (dns-01 challenge). The latter are needed to obtain wildcard > certificates. > Is this diff ok? Is the design of the hook interface sane? Any > feedback is welcome. > I'm not convinced passing random crap coming from the internet to a shell script running as root is a good idea. > > Christopher > > -- In my defence, I have been left unsupervised.