Also, I’m using certbot now, but I am not sure whether I’m going to continue using it.
1 Like
@stevesobol I’m slightly biased (having written GetSSL ) but it was designed to do virtually exactly what you want (run on one server, and copy the certs to other servers). Also have a look at some of the other alternative clients
1 Like
Will definitely check it out…
1 Like
I was wondering just that - you might be better off with @Neilpang's acme.sh or @serverco's GetSSL.
I'm using Certbot, but my setup is far simpler than yours. Also, Certbot is dependency-heavy, and prone to breakage when a dependency is either not upgraded enough, or upgraded too far. That's broken my config a few times.
Also, Certbot requires root, whereas other clients can run as an unprivileged user without issues. You might find you don't need to have the Let's Encrypt client run in it's own VPS in the first place.
Good luck! I'm really happy to hear your willingness to share any scripts you write 
1 Like
From the looks of it DNS Made Easy is large enough that many people might benefit from your scripts. They might also interface well with GetSSL from @serverco, which has a in-built hook for external scripts to add/delete DNS records.
1 Like
@gypsypriest DNS Made Easy is a pretty big enterprise-quality provider with a stable API, and yes… that’s EXACTLY why I’m planning on open-sourcing my work. I figure others can benefit from it.
@DarkSteve It’s a $5 DigitalOcean VPS and I like being able to spin up inexpensive servers so I don’t have to have a small number of servers, each performing a whole bunch of different functions. 
Everyone seems to be endorsing GetSSL. Seems to me that that’s the way to go, and it may already work with DNSME.
2 Likes
Kudos! That’s what makes OpenSources so good, everyone helping everyone. That and instead of reinventing the wheel we can make better gears to turn the common wheel, or better trails for the wheel to follow.
1 Like
Been around about as long as you have, and if updates create disaster, what happens without updates. I’m very happy to use DVDs and SSDs instead of paper tape and Hollerith codes, though I was happy to see the cards I could mark rather than key punch. I’m going to guess that your are not still using a PDP-11, or some such, and that your system gets updates once in a while. How often do you run updates? Yearly? Quarterly? Daily? Does your system have an hourly cron that checks for updates? Would you argue that system updates should only be done every 12 months because something might break? I’m for 90 days, and happy when, if, it goes less. Nothing is “set it and forget it,” but automation sure is nice as far as it goes.
1 Like