When running certbot to regularly renew my domain’s certificates, it appears to run
sudo by itself and edit my nginx config to set up its challenge/response and install the certificates. Can I
- Make it not run
sudo? I’d be happy to run commands as root by myself if it tells me what I need to install/set up. Or, if the script exits with “Certbot must run as root”, that would be okay too, and this is how most root-requiring utilities work. I’ve never seen a utility that runs
if (not root) sudo ./myselfand it’s a bit surprising.
- Make it not touch my nginx config but instead tell me what I have to modify? If the script prints “Edit your Nginx config with the following…”, that would be a much less invasive experience in my opinion.