i’ve installed certbot via ppa (http://ppa.launchpad.net/certbot/certbot/ubuntu/) mentioned in https://certbot.eff.org/lets-encrypt/ubuntubionic-apache. Actually this installation is using version 0.31.0-1+ubuntu18.04.1+certbot+1. Unfortunately i hit a bug which is mentioned under https://github.com/certbot/certbot/issues/7048 and https://github.com/certbot/certbot/pull/7095. This bug seems to be fixed in a newer version (0.35.0) than provided by official certbot ppa for ubuntu bionic. Is it possible to update this ppa or should i install certbot from source? If the ppa gets an update, when will it be? Because certificate renewal is not possible with this bug.
You need to fix the configuration files that Certbot broke. Upgrading to a newer version won’t automatically do that; it just won’t break them again in the future. You might as well fix them now, before you upgrade, and then you will be able to renew your certificates, without upgrading.
If you can avoid the conditions that would break them again, you don’t even need to upgrade.
If you decide to upgrade Certbot now, before a newer package becomes available in the PPA, I’d suggest using
The Certbot installation from the PPA has installed a systemd timer named
certbot that will automatically renew using the Certbot installation from the PPA. If you create a separate installation of Certbot, you’ll have to do something about that – uninstall the package,
systemctl edit the timer to use the other installation, or deactivate the timer and set up your own timer or cron job.
Thanks for your detailed help mnordhoff. I thought it would have been easier to update the ppa. So your answer to me is just a workaround, not a solution. Nevertheless, the issue is now settled.
This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.