acme-tiny-0.1-10.20160810git5a7b4e7.fc25.noarch.rpm


Advertisement

Description

acme-tiny - Tiny auditable script to issue, renew Let's Encrypt certificates

Distribution: Fedora 25
Repository: Fedora i386
Package name: acme-tiny
Package version: 0.1
Package release: 10.20160810git5a7b4e7.fc25
Package architecture: noarch
Package type: rpm
Installed size: 30.16 KB
Download size: 23.96 KB
Official Mirror: dl.fedoraproject.org
This is a tiny, auditable script that you can throw on your server to issue and renew Let's Encrypt certificates. Since it has to be run on your server and have access to your private Let's Encrypt account key, I tried to make it as tiny as possible (currently less than 200 lines). The only prerequisites are python and openssl. Well, that and a web server - but then you only need this with a web server. This package adds a simple directory layout and timer service that runs acme_tiny on installed CSRs as the acme user for privilege separation.

Requires

Provides

  • acme-tiny = 0.1-10.20160810git5a7b4e7.fc25
  • config(acme-tiny) = 0.1-10.20160810git5a7b4e7.fc25

    Install Howto

    Install the acme-tiny rpm package:

    # dnf install acme-tiny

    Files

    • /etc/httpd/conf.d/acme.conf
    • /usr/lib/systemd/system/acme-tiny.service
    • /usr/lib/systemd/system/acme-tiny.timer
    • /usr/libexec/acme-tiny/sign
    • /usr/sbin/acme-tiny
    • /usr/sbin/acme-tiny-sign
    • /usr/sbin/acme_tiny
    • /usr/sbin/cert-check
    • /usr/share/doc/acme-tiny/README-fedora.md
    • /usr/share/doc/acme-tiny/README.md
    • /usr/share/licenses/acme-tiny/LICENSE
    • /var/lib/acme/lets-encrypt-x3-cross-signed.pem
    • /var/lib/acme/certs/
    • /var/lib/acme/csr/
    • /var/lib/acme/private/
    • /var/www/challenges/

    Changelog

    2016-08-22 - Stuart D. Gathman <stuart@gathman.org> 0.1-10.20160810git5a7b4e7 - Fix cert writable check in sign script - More tips in README-fedora.md

    2016-08-22 - Stuart D. Gathman <stuart@gathman.org> 0.1-9.20160810git5a7b4e7 - Use %{systemd_requires} - Remove unneeded cronie, python dependencies - Add acme-tiny.timer to systemd scriptlets - Add README-fedora.md - acme_tiny: Fix --chain patch for python2.6 (el6) - acme_tiny: Suppress traceback on error

    2016-08-21 - Stuart D. Gathman <stuart@gathman.org> 0.1-8 - Add use_systemd flag to use systemd timer and enable on Fedora and epel7 - Enable use_python3 flag for Fedora (but not epel7).

    2016-08-20 - Stuart D. Gathman <stuart@gathman.org> 0.1-7 - sign: Actually use the new --chain flag - cron: Make days to expiration explicit - spec: Set file modes with install - acme.conf: mark as config

    2016-08-19 - Stuart D. Gathman <stuart@gathman.org> 0.1-6 - Python3 fixes for cert-check - acme-tiny: Update patch to leave default behavior unchanged - make /var/lib/acme readable by all except private

    2016-08-11 - Stuart D. Gathman <stuart@gathman.org> 0.1-5 - sign: Use tmp output to avoid wiping existing cert on error - acme_tiny: get intermediate cert from acme protocol

    2016-08-11 - Stuart D. Gathman <stuart@gathman.org> 0.1-4 - Fix path of acme_tiny and make days explicit in sign script - Add crontab

    2016-08-10 - Stuart D. Gathman <stuart@gathman.org> 0.1-3 - Add global acme httpd conf - Append intermediate certs, add current lets-encrypt intermediate cert

    2016-08-09 - Stuart D. Gathman <stuart@gathman.org> 0.1-2 - add private, csr, certs directories - add sign script suitable for cron

    2016-08-08 - Stuart D. Gathman <stuart@gathman.org> 0.1-1 - Initial RPM

    Advertisement
    Advertisement