Certbot: Recommended configuration options/best practices

Hello everyone,

I’ve just set up my own LE cert with a lot of help from @cpu
(Thanks again). But I only used certbot with --apache. Are there any other handy options or any expiriences that you have made? I have seen some but I can not judge If they are good or not.

My domain is: YuY3v0n.de

I ran this command: certbot --apache

It produced this output: a good one :wink:

My web server is (include version): Apache 2.x

The operating system my web server runs on is (include version): Ubuntu 16.04 LTS

My hosting provider, if applicable, is: INWX

I can login to a root shell on my machine (yes or no, or I don’t know): yes, sir!

I’m using a control panel to manage my site: Not by now

1 Like

I manage three servers built on the Mac OS X Client using BIND, Apache, Webmin, PHP and MySQL. Each one is an identical backup to the other. In addition to that I use the Bitnami Apache, PHP and MySQL because they are always current and patch any security issues. I started to use LE because I also have an ecommerce store built on Prestashop. I do that for knowledge, fun and to help those that are interested in learning these things. My LE is manually configured with Apache. Here is my command line;

[server:~] root# cd /Users/User/letsencrypt
[server:~/letsencrypt] root# ./certbot-auto certonly --webroot --webroot-path /Users/User/Sites/ --email webmaster@domain.org -d domain.org -d www.domain.org

Ps: I think that is not a single way to Certbot. People use according to their server setup. Saying that, I have not tried other command lines to renew my domains. I do have some limitation on my network setup and I am always admitting that on my posts. I have a single DSL/U/Verse line with one IP address. Not because I do not want it but my ISP does not allow me to reverse my chief domain to their supplied IP address. That limits a little bit but so far I still can do all my stuff with no hard network issues.

1 Like

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.