I ask to help me solve the problem, which gives me noticeable inconvenience.
Each time the certificate is received, the mode of accessing the privkey.pem file is 0644. Meanwhile, the access mode must be 0600.
This situation leads to the fact that, firstly, any user can copy this key, and secondly, most programs refuse to accept a key with this access mode and stop working.
After receiving the certificate, I have to set the right mode of access to the file manually. It is not comfortable.
Can I force certbot to automatically set the correct access code for the privkey.pem file?
Thankful in advance for the answer to the question,