bllfr0g

IMHO daemons should log to syslog. If individuals care to have certain syslog messages emailed to them, that's a function of the syslog daemon.

Maybe 2 months out is a little early to be running the script? > On Aug 7, 2019, at 08:31, markmghali wrote: > > Too early to check in. Waiting...

I think the max can vary from machine to machine. On my Mac it’s 99999999 seconds, which actually would have worked for you. What kind of machine and python implementation...

It's KEY_ALGO. On 1/29/22 14:13, Jeff Sani wrote: > > I did not see a parameter to support the request of ECDSA certs from > ACMEv2. Am I missing something?...

prime256v1 is a 256 bit curve used with ecdsa. Secp3841 is a 384 bit curve. Looks like certbot uses prime256v1 if you choose ecdsa and do not specify a curve....

That may be a doc bug. I’m not sure if ecdsa was ever a valid option there, but it definitely isn’t now. > On Jan 31, 2022, at 13:05, Jeff...

wouldn't it be easier/cleaner to use the `-proxy` option to openssl-ocsp?

good point! Looks like `-proxy` was added about two years ago, so your change will work in more places. https://github.com/openssl/openssl/commit/88d96983d881254d0bcb36d79b32aac08339e0d3