Where communities thrive


  • Join over 1.5M+ people
  • Join over 100K+ communities
  • Free without limits
  • Create your own community
People
Activity
    Nick Janetakis
    @nickjanetakis_twitter
    this was being ran through ansible, so it hangs everything for that 2 minutes, that's why i was trying to reduce it, but that should only happen on the first run
    since renews will be done behind the scenes
    Georg
    @teadur
    you can try to play around with the timers, if DI updates zones so fast i think you could get away with shorter time
    Nick Janetakis
    @nickjanetakis_twitter
    when i asked support, they told me it's immediate (push based when you change anything)
    Georg
    @teadur
    DO even
    Nick Janetakis
    @nickjanetakis_twitter
    i'm sure some stuff happens to make all that work, so maybe a few seconds in a normal case scenario
    Georg
    @teadur
    im not 100% sure how acme dns cache works, but from design point of view having cache there could only bring more troubles
    then benefit
    because 99% of the time you want the newest record so having cache there seems kind of counter productive
    Nick Janetakis
    @nickjanetakis_twitter
    yeah that would cause all sorts of issues
    by the way, i think i may have discovered a bug or inconsistency with the namesilo api but i don't know if it's worth reporting
    Georg
    @teadur
    althought you could try it out with dns server under your own control
    Nick Janetakis
    @nickjanetakis_twitter
    so namesilo only pushes dns updates every 15 minutes
    so i did what your readme said and set the sleep to 900
    but when the record was saved, it used a 7200 TTL
    however with DO's API , i set the sleep to 120 and it set the TTL to 120
    i wonder why namesilo set such a high TTL
    Georg
    @teadur
    TTL is always tradeoff of load against your nameserver vs how fast clients requery
    so having higher ttl means less load to your nameservers
    in some enormouse scale it could make a whole lot of difference
    Nick Janetakis
    @nickjanetakis_twitter
    yeah but i mean acme.sh set a 120 TTL when using digitalocean's API
    for the TXT challenge
    but for namesilo it set a 7200 TTL with a 900 sleep
    Georg
    @teadur
    were the SOA entries for zones identical ?
    Nick Janetakis
    @nickjanetakis_twitter
    looking at the source code, you hardcode a TTL 120 for digitalocean
    but for namesilo you don't set a TTL when making the api call
    Georg
    @teadur
    i didnot write acme.sh :)
    Nick Janetakis
    @nickjanetakis_twitter
    oh oops haha
    Georg
    @teadur
    im just a user like you
    Nick Janetakis
    @nickjanetakis_twitter
    thanks for the help btw
    Georg
    @teadur
    np
    Nick Janetakis
    @nickjanetakis_twitter
    it does seem to be a case where the namesilo api never sets rrttl (the field used by namesilo's api for setting the ttl)
    in acme.sh's codebase i mean
    aaronstuder
    @aaronstuder
    Hello
    Is there a way to use acme.sh fully automated within a script?
    Matt Deering
    @mattgphoto
    Hey guys, having a heck of a time trying to figure out how to do this with gcloud dns, do I need to edit the dns_gcloud.sh file?
    Matt Deering
    @mattgphoto
    gcloud init for instance, doesn't work on a synology :-D
    Matt Deering
    @mattgphoto
    Ah well, I tried everything I could. With no support, can't use your script. Take care!
    kingdevnl
    @kingdevnl
    Heyo, is letsencrypt down?
    John Losito
    @jlosito
    Hello. Does anyone know if there’s a way to install the client without it automatically setting a cron job?
    John Losito
    @jlosito
    Nevermind. I found it. There’s an option for it. —nocron
    John Losito
    @jlosito
    Is there any way upon installation to not create the aliases?
    michealkd
    @michealkd
    hi there, new to acme.sh - think its awesome as i saved me time creating 2 wildcards.
    i run the docker container from docker-hub, question, does Neils container support custom cron parameters, for instance storing a custom --reloadcmd then issuing it after renewals
    cliff v
    @powerdude
    hi. QQ about Synology NAS use. can you use this script to configure SANs with your domain cert? In the UI, you can specify a 'xxxx.synology.me' SAN so that you just need one cert. would the "-d" option work for this?
    Haelwenn Monnier
    @lanodan
    Hi, is there a way to disable the Dns Over {TLS,HTTP}? It's been broken for me and TTL based is fine for me as I'm self-hosted.
    neil
    @Neilpang
    @lanodan Sorry for the problem. you can use --dnssleep 200 to sleep 200 sconds before the dns records propagate, which will disable the auto DNS over HTTPS checkings.
    Haelwenn Monnier
    @lanodan
    Thanks it worked.
    neil
    @Neilpang
    @lanodan please try the latest dev branch without --dnssleep, it should be working now.
    Mariano Rodríguez
    @MarianoRD
    Hello everyone, I'm having an issue when I try to create a certificate with 'dns_dgon' it supposedly creates the TXT record, but then tries to find it in CloudFlare