Certbot 1.10.0 Release

bmw · December 1, 2020, 8:46pm

We just released Certbot 1.10.0. The changelog for the release is:

1.10.0 - 2020-12-01

Added

Added timeout to DNS query function calls for dns-rfc2136 plugin.
Confirmation when deleting certificates
CLI flag --key-type has been added to specify 'rsa' or 'ecdsa' (default 'rsa').
CLI flag --elliptic-curve has been added which takes an NIST/SECG elliptic curve. Any of
secp256r1, secp384r1 and secp521r1 are accepted values.
The command certbot certficates lists the which type of the private key that was used
for the private key.
Support for Python 3.9 was added to Certbot and all of its components.

Changed

certbot-auto was deprecated on Debian based systems.
CLI flag --manual-public-ip-logging-ok is now a no-op, generates a
deprecation warning, and will be removed in a future release.

Fixed

Fixed a Unicode-related crash in the nginx plugin when running under Python 2.

More details about these changes can be found on our GitHub repo.

rmbolger · December 1, 2020, 8:49pm

Is that supposed to be secp384r1?

bmw · December 1, 2020, 8:50pm

It is! Thanks for pointing that out. I updated my initial post.

bmw · December 2, 2020, 12:09am

A post was split to a new topic: How do I obtain an ECDSA certificate with Certbot?

bmw · December 2, 2020, 12:11am

You can find documentation about obtaining certificates that use ECDSA keys with Certbot at https://certbot.eff.org/docs/using.html#using-ecdsa-keys.

bmw · December 3, 2020, 9:40pm

7 posts were split to a new topic: Certbot-auto no longer works on Debian based systems

elrey · December 24, 2020, 1:49pm

Hi, sorry if this is a silly question ( new to use using letsencrypt even though I have heard a lot about it ).

Since this changed to being deprecated:

is there going to be any way to skip the prompt now for asking if you are ok with having your public IP logged?

P.S. love all the work you all do! thank you!

griffin · December 24, 2020, 5:02pm

@elrey

Welcome to the Let's Encrypt Community, Alex

Do you have the latest certbot installed? I'm only asking because I can't imagine that certbot would be prompting regarding deprecated functionality, which would seem to me to be a bug.

Osiris · December 24, 2020, 5:12pm

For certbot 1.10.0 and newer the whole prompt has been removed as part of the deprecation of the --manual-public-ip-logging-ok option: manual: deprecate --manual-public-ip-logging-ok by alexzorin · Pull Request #8381 · certbot/certbot · GitHub

This fact is indeed not incorporated in the changelog.

system · January 23, 2021, 5:12pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.