simp_le
simp_le copied to clipboard
Published
20 hours ago •
kuba
kuba
Cleanup webroot
I am using the following script to generate certificates and noticed the /tmp/letsencrypt dir contents are left intact even after ssl generation. Should I be deleting these after generation?
DOMAIN=domain.com;
sudo mkdir /etc/nginx/ssl/${DOMAIN};
sudo chmod 700 /etc/nginx/ssl/${DOMAIN};
cd /etc/nginx/ssl/${DOMAIN};
simp_le -d ${DOMAIN}:/tmp/letsencrypt -f key.pem -f cert.pem -f fullchain.pem
sudo chmod -R 400 /etc/nginx/ssl/${DOMAIN}/*;
I don't believe that leaving those files poses any security risk, but it would be better if client cleaned up after itself.
