Certbot 1.3.0 Release

Client dev
1

Certbot 1.3.0 has just been released. The changelog entry for the release is:

1.3.0 - 2020-03-03

Added

  • Added certbot.ocsp Certbot’s API. The certbot.ocsp module can be used to
    determine the OCSP status of certificates.
  • Don’t verify the existing certificate in HTTP01Response.simple_verify, for
    compatibility with the real-world ACME challenge checks.

Changed

  • Certbot will now renew certificates early if they have been revoked according
    to OCSP.
  • Fix acme module warnings when response Content-Type includes params (e.g. charset).
  • Fixed issue where webroot plugin would incorrectly raise Read-only file system
    error when creating challenge directories (issue #7165).

More details about these changes can be found on our GitHub repo.

8 Likes
2

Potentially useful for the 3/4 revocations...
But that may depend on how soon OCSP can respond with those revocations.

3

The relevant issue with details: Check OCSP as part of determining if the certificate is due for renewal · Issue #1028 · certbot/certbot · GitHub
And the relevant PR: Check OCSP as part of determining if the certificate is due for renewal by bmw · Pull Request #7829 · certbot/certbot · GitHub

2 Likes
4

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.