upstream/certbot
1
0
Fork 0
mirror of https://github.com/certbot/certbot.git synced 2026-06-06 15:22:38 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions 2
9359 commits 876 branches 156 tags 129 MiB
Commit graph

9359 commits

This branch
This branch
All branches
Author SHA1 Message Date
Seth Schoen
c9cc928dc4 implement Observatory blacklist 2012-08-09 14:20:18 -07:00
Peter Eckersley
cb0f7d5389 Merge branch 'master' of github.com:research/chocolate 2012-08-08 17:39:55 -07:00
Seth Schoen
c6453513b6 switch to Peter's round-robin scheduling approach 2012-08-08 17:30:44 -07:00
James Kasten
7c814bd7b1 Fixed SERVER_ROOT directory, improved sni_challenge test 2012-08-08 20:06:41 -04:00
James Kasten
9e96153d84 Moved all hardcoded constants to CONFIG file 2012-08-08 19:54:32 -04:00
Peter Eckersley
913dbd5581 The hashcash binary is also a client-webserver dependency now 2012-08-08 16:12:01 -07:00
James Kasten
ca7d7f8ab7 Small bug fixes from last commit 2012-08-08 19:10:38 -04:00
James Kasten
c0a3fd3f0d Quick separation of work_directory from config_directory 2012-08-08 19:01:44 -04:00
James Kasten
c1e3da6395 Merge branch 'master' of github.com:research/chocolate 2012-08-08 17:02:38 -04:00
James Kasten
0bd5bf57d5 Added check to see if certificate exists 2012-08-08 17:01:54 -04:00
Seth Schoen
c4c8bd04f9 argh, ugly hack for problem of stale requests poisoning queues 2012-08-08 13:41:15 -07:00
Seth Schoen
cb2040a3ac add missing colon 2012-08-08 13:13:14 -07:00
James Kasten
76f449f650 slight modifications 2012-08-08 01:06:30 -04:00
James Kasten
17e7b14f81 Fix short lived error 2012-08-08 00:31:51 -04:00
James Kasten
b13364a647 Fixed a bug with the default name based vhost, made sni_challenge create challenge_vhosts with IP_address of target vhost 2012-08-08 00:08:03 -04:00
James Kasten
c9fcad82ff Added a check for a failed sni_challenge 2012-08-07 22:56:46 -04:00
James Kasten
da01500a68 Reworked deploy_cert to use find_directive 2012-08-07 21:32:51 -04:00
James Kasten
3b25a87667 Added is_site_enabled, added documentation 2012-08-07 18:02:05 -04:00
James Kasten
55f12a61a7 Merge branch 'master' of github.com:research/chocolate 2012-08-07 15:59:36 -04:00
James Kasten
1693414a69 Added get_all_names function for configurator 2012-08-07 15:56:05 -04:00
Peter Eckersley
84eb5058c6 Disable raw IPv6 addresses by default 
(they're scarier than I thought, and a bit dangerous in Web and maybe Windows
shell contexts)
 2012-08-06 15:27:05 -07:00
Peter Eckersley
e119f50f14 Explain the tree a bit; note some debian dependencies 2012-08-06 15:00:51 -07:00
James Kasten
498c47f2f6 Added enable_site and enable_mod_ssl 2012-08-03 15:52:07 -04:00
James Kasten
6804ccb41f Added apache/sni_challenge cleanup 2012-08-02 18:46:01 -04:00
James Kasten
6fd9d01644 Revert to EC2 testing variables 2012-08-01 19:46:34 -04:00
James Kasten
cdafed5427 Using Augeas to add Include directive for challenge vhosts 2012-08-01 19:42:18 -04:00
James Kasten
fc56a875d0 Added code to auto-configure the Apache server for SNI challenges 2012-08-01 19:31:21 -04:00
James Kasten
a0ca971c2e Updated README 2012-08-01 14:25:20 -04:00
James Kasten
91907b1264 Slight update to README 2012-08-01 14:23:25 -04:00
James Kasten
5a07d530f9 Example ec2 client auto-installs certificates upon receiving cert 2012-07-30 19:26:03 -04:00
James Kasten
2c9629046a Made quick changes to client to allow for deployment of cert on test servers 2012-07-30 18:19:40 -04:00
James Kasten
de89d1fe63 Added error handling for Augeas save files 2012-07-30 14:47:41 -04:00
James Kasten
94d1827838 Added make_server_sni_ready, fixed vhost.addrs bug, cleaned up some code 2012-07-30 14:03:06 -04:00
Seth Schoen
67da1f65dd just in case there are DOS-style EOLs in the CSR 2012-07-28 18:43:20 -07:00
James Kasten
f2e54b4df0 Added find_directive - searches for directives recursively through conf files, fixed a few bugs 2012-07-27 00:58:12 -04:00
Peter Eckersley
344f602da5 Check hostnames from the evironment before Popen()ing with them. 
This was probably safe anyway, but since we're passing things from the
environment into a subprocess call, let's be extra careful about privilege
escalations.
 2012-07-25 16:21:55 -07:00
James Kasten
2b9ee8e2cc Added functions add_name_vhost and check_ssl_loaded 2012-07-25 17:39:15 -04:00
Seth Schoen
c75f154bd6 have daemon send a pubsub message to itself to achieve prompt clean shutdowns 2012-07-20 23:54:58 -07:00
Seth Schoen
7ee2b9ef21 note priority inversion bug is now somewhat less severe 2012-07-20 18:47:29 -07:00
Seth Schoen
2ba0eae5d6 support for distributing certificate chain file 2012-07-20 18:37:47 -07:00
Seth Schoen
cb5922edd8 switch to pubsub mechanism instead of polling 2012-07-20 16:48:10 -07:00
Seth Schoen
d02883ca38 add field for certficate chain 2012-07-20 16:43:42 -07:00
Seth Schoen
8db37e5501 add cert_chain_file config option 2012-07-20 16:43:18 -07:00
Seth Schoen
06357addf0 min_key_size → min_keysize 2012-07-19 23:22:52 -07:00
Seth Schoen
90f4b4daeb move configuratoin parameters into config file; add extra sanity checks 2012-07-19 23:19:39 -07:00
James Kasten
8cd2b1e66d initial commit for configurator with basic functionality 2012-07-20 00:11:11 -04:00
Seth Schoen
b1b7257c2a what kind of getopt is the upstream hashcash using, anyway? 2012-07-18 22:36:22 -07:00
Seth Schoen
c89a0e8f8e mint hashcash with expiry stated down to the second 2012-07-18 22:31:54 -07:00
Seth Schoen
6f5d15cddf whoops, the past is the past, not the future 2012-07-18 22:28:41 -07:00
Seth Schoen
c117582ece drop privileges and use external hashcash binary again 2012-07-18 22:25:23 -07:00