So I’m hoping to try Let’s Encrypt out soon, and I think the webroot plugin is going to be the best method for me (assuming my computer will stop auto-correcting it to “webfoot” ).
Anyway, I’m trying to plan how I’ll set everything up, but I noticed that to use the webroot method I’ll need to allow access to hidden directories, which I take to mean that it will create a hidden directory from which to serve its verification file(s). What I’d like to know is whether the name of this sub-directory is consistent or controllable?
You see, my nginx server currently denies access to all hidden files, mostly just as a precautionary measure (I’m pretty sure I don’t actually have any), but I’d like to avoid disabling this rule if I can.
If webroot does use a consistent sub-directory name, or can be configured to do-so, then I can add an exception for that directory only, but if it’s random I guess I’ll just have to go ahead and disable the rule for hidden files/directories, though I’d prefer not to.