[arch-general] certbot automatic renewal: why twice a day?
ProgAndy
admin at progandy.de
Tue Jun 11 15:53:09 UTC 2019
Am 11.06.19 um 17:46 schrieb Łukasz Michalski:
> Hi,
>
> Looking at timer example at [1]:
>
> "Add a timer to check for certificate renewal twice a day and include a
> randomized delay so that ....."
>
> Why try to renew twice a day?
>
Hi,
This interval is recommended by the EFF here:
https://certbot.eff.org/lets-encrypt/arch-nginx
[...] running it regularly would give your site a chance of
staying online in case a Let's Encrypt-initiated revocation
happened for some reason [...]
--
Regards,
Andy
> I understand that there is 30 days before expiration date to renew. I
> think weekly check should be enough for a server?
>
> Regards,
> Łukasz
>
> [1] https://wiki.archlinux.org/index.php/Certbot#Automatic_renewal
More information about the arch-general
mailing list