Page MenuHomeSolus

Update certbot to 0.37.2
ClosedPublic

Authored by kyrios123 on Thu, Aug 22, 4:36 PM.

Details

Summary

Fixed

  • Stop disabling TLS session tickets in Nginx as it caused TLS failures on some systems.
  • Stop disabling TLS session tickets in Apache as it caused TLS failures on some systems.

Added

  • Turn off session tickets for apache plugin by default
  • acme: Authz deactivation added to acme module.

Changed

  • Follow updated Mozilla recommendations for Nginx ssl_protocols, ssl_ciphers, and ssl_prefer_server_ciphers

Depends on D7024

Signed-off-by: Pierre-Yves <pyu@riseup.net>

Test Plan

Successfully generate a certificate with certbot certonly

Diff Detail

Repository
R3751 certbot
Lint
Automatic diff as part of commit; lint not applicable.
Unit
Automatic diff as part of commit; unit tests not applicable.

Event Timeline

kyrios123 created this revision.Thu, Aug 22, 4:36 PM
kyrios123 requested review of this revision.Thu, Aug 22, 4:36 PM
JoshStrobl accepted this revision.Fri, Aug 23, 12:41 PM
JoshStrobl added a subscriber: JoshStrobl.

LGTM, thanks!

This revision is now accepted and ready to land.Fri, Aug 23, 12:41 PM
This revision was automatically updated to reflect the committed changes.