Originally Posted by
kevdog
My only take on the matter is I once found a problem when working with acme.sh when install let's encrypt certificates. The process would work when run under the su user. With sudo -- the process totally flopped. I filed a bug and never heard back. All this told me was the process isn't interchangeable for some reason.
I use acme.sh too. sudo works with it, just requires the --force option for acme.sh. The idea that someone can install certs to be used on a web server, but not have elevated privileges is just wrong. Exactly how do they expect certs to be deployed without root? My only guess is they expect people to be on hosted, shared, web servers where they control certs but not apache.
Exactly how should I deploy a cert without root, here?
Code:
/etc/nginx/ssl/blog.jdpfu.com$ ll
total 20
drwxr-xr-x 2 root root 4096 Jun 6 2019 .
drwxr-xr-x 14 root root 4096 Jun 11 2019 ..
-rw-r--r-- 1 root root 1907 Mar 3 13:00 cert.pem
-rw-r--r-- 1 root root 3555 Mar 3 13:00 fullchain.pem
-rw------- 1 root root 1675 Mar 3 13:00 key.pem
Then restart/reload nginx without root?
How?
Bookmarks