Brad Warren

Sorry for my very delayed reply @SystemParadox. It's been a busy couple of weeks. The behavior you're seeing where hooks in `/etc/letsencrypt/renewal-hooks` only run with the `renew` subcommand is intentional....

> Do I understand correctly that pre/post/deploy hooks can be specified in the renewal config? Yes, however, I recommend letting Certbot preserve these options for you. These files weren't really...

The best documentation we have right now is in this issue and its links to various bits of our documentation. If you need further help, I recommend posting to https://community.letsencrypt.org...

Another option here might be to deprecate it entirely. It in theory has some value, but I think it may do more harm than good.

@alex, @reaperhulk: Since you know this space much better than I do, I would love to hear any thoughts you have about this if you find the time. To provide...

We're not using `ctypes` ourselves, but we currently depend on `python-augeas` for parsing Apache config files which depending on the version uses `ctypes` or `cffi` to load an Augeas shared...

Thanks a lot for taking a look at this! I'll do some more digging into the history to verify, but the note at https://docs.python.org/3/library/ctypes.html#finding-shared-libraries says: > Changed in version 3.6:...

I actually think we have the same problem here unfortunately at least on Ubuntu 16.04 due to `ExecStop` not being run if the service wasn't started with `ExecStart` ([source](https://www.freedesktop.org/software/systemd/man/systemd.service.html)). To...

@HorlogeSkynet, yes, this is a known issue unfortunately if you use standalone with the Apache plugin to obtain multiple certificates. See #2419. If you were using standalone to workaround TLS-SNI...

See #489 for a lot of discussion about this issue.