I just spotted this in a certbot output from one of our help-seekers:
Future versions of Certbot will automatically configure the webserver so that all requests redirect to secure HTTPS access.
This message was returned after the help-seeker had selected not to redirect to HTTPS.
I can't begin to state how much automatically-redirecting is "no bueno" for many people who come here. Often they aren't even aware that certbot will even touch their webserver configurations. To do so without warning in a fashion that more than a little frequently around here has resulted in broken webserver configurations seems ill-advised. I realize that the intent is to automate certbot as much as possible and ensure that users don't forget to redirect to HTTPS (which also occurs a lot), but taking away inherent choice from unaware users will cause preventable damage. I find that the automatic redirection certbot implements frequently does not work on more than basic webserver configurations (and in Apache uses
RewriteRule instead of the far-more-efficient