Hello.
When I saw /var/log/letsencrypt/letsencrypt.log, I found renewal works every day as follows…
$ grep ‘Cert not yet due for renewal’ /var/log/letsencrypt/letsencrypt.log*
/var/log/letsencrypt/letsencrypt.log:2017-11-23 12:49:33,796:INFO:certbot.renewal:Cert not yet due for renewal
/var/log/letsencrypt/letsencrypt.log:2017-11-23 12:49:33,801:INFO:certbot.renewal:Cert not yet due for renewal
/var/log/letsencrypt/letsencrypt.log:2017-11-23 12:49:33,807:INFO:certbot.renewal:Cert not yet due for renewal
/var/log/letsencrypt/letsencrypt.log:2017-11-23 12:49:33,821:INFO:certbot.renewal:Cert not yet due for renewal
/var/log/letsencrypt/letsencrypt.log.1:2017-11-23 00:52:40,774:INFO:certbot.renewal:Cert not yet due for renewal
/var/log/letsencrypt/letsencrypt.log.1:2017-11-23 00:52:40,788:INFO:certbot.renewal:Cert not yet due for renewal
/var/log/letsencrypt/letsencrypt.log.1:2017-11-23 00:52:40,814:INFO:certbot.renewal:Cert not yet due for renewal
/var/log/letsencrypt/letsencrypt.log.1:2017-11-23 00:52:40,840:INFO:certbot.renewal:Cert not yet due for renewal
/var/log/letsencrypt/letsencrypt.log.2:2017-11-22 12:27:34,731:INFO:certbot.renewal:Cert not yet due for renewal
/var/log/letsencrypt/letsencrypt.log.2:2017-11-22 12:27:34,738:INFO:certbot.renewal:Cert not yet due for renewal
/var/log/letsencrypt/letsencrypt.log.2:2017-11-22 12:27:34,765:INFO:certbot.renewal:Cert not yet due for renewal
/var/log/letsencrypt/letsencrypt.log.2:2017-11-22 12:27:34,792:INFO:certbot.renewal:Cert not yet due for renewal
/var/log/letsencrypt/letsencrypt.log.3:2017-11-22 00:16:10,575:INFO:certbot.renewal:Cert not yet due for renewal
/var/log/letsencrypt/letsencrypt.log.3:2017-11-22 00:16:10,591:INFO:certbot.renewal:Cert not yet due for renewal
/var/log/letsencrypt/letsencrypt.log.3:2017-11-22 00:16:10,615:INFO:certbot.renewal:Cert not yet due for renewal
/var/log/letsencrypt/letsencrypt.log.3:2017-11-22 00:16:10,639:INFO:certbot.renewal:Cert not yet due for renewal
/var/log/letsencrypt/letsencrypt.log.4:2017-11-21 12:58:46,567:INFO:certbot.renewal:Cert not yet due for renewal
/var/log/letsencrypt/letsencrypt.log.4:2017-11-21 12:58:46,574:INFO:certbot.renewal:Cert not yet due for renewal
/var/log/letsencrypt/letsencrypt.log.4:2017-11-21 12:58:46,581:INFO:certbot.renewal:Cert not yet due for renewal
/var/log/letsencrypt/letsencrypt.log.4:2017-11-21 12:58:46,587:INFO:certbot.renewal:Cert not yet due for renewal
For now, I only set cron to renew just once per month as follows.
$ cat /etc/crontab
SHELL=/bin/sh
PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin
# m h dom mon dow user command
#37 * * * * root cd / && run-parts --report /etc/cron.hourly
10 1 * * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.daily )
33 1 * * 7 root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.weekly )
47 3 10 * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.monthly )
0 0 8 * * root /bin/bash /usr/sbin/letsencrypt_auto-update.sh >>/var/log/letsencrypt/letsencrypt_update.log 2>&1
Why renew works every day?
OS: Ubuntu 16.04.3 LTS and Debian GNU/Linux 8
Thank you.