Subject: CVS commit: pkgsrc/security
From: Adam Ciarcinski
Date: 2019-05-07 10:50:37
Message id: 20190507085037.42DFFFB16@cvs.NetBSD.org
Log Message:
py-acme,py-cerbot*: updated to 0.34.1

0.34.1:
Fixed

certbot-auto no longer prints a blank line when there are no permissions problems.
Despite us having broken lockstep, we are continuing to release new versions of \ 
all Certbot components during releases for the time being, however, the only \ 
changes in this release were to certbot-auto.

More details about these changes can be found on our GitHub repo.

0.34.0:
Changed
Apache plugin now tries to restart httpd on Fedora using systemctl if a \ 
configuration test error is detected. This has to be done due to the way Fedora \ 
now generates the self signed certificate files upon first restart.
Updated Certbot and its plugins to improve the handling of file system \ 
permissions on Windows as a step towards adding proper Windows support to \ 
Certbot.
Updated urllib3 to 1.24.2 in certbot-auto.
Removed the fallback introduced with 0.32.0 in acme to retry a challenge \ 
response with a keyAuthorization if sending the response without this field \ 
caused a malformed error to be received from the ACME server.
Linode DNS plugin now supports api keys created from their new panel at \ 
cloud.linode.com
Adding a warning noting that future versions of Certbot will automatically \ 
configure the webserver so that all requests redirect to secure HTTPS access. \ 
You can control this behavior and disable this warning with the --redirect and \ 
--no-redirect flags.
certbot-auto now prints warnings when run as root with insecure file system \ 
permissions. If you see these messages, you should fix the problem by following \ 
the instructions at \ 
https://community.letsencrypt.org/t/certbot-auto-deployment-best-practices/91979/, \ 
however, these warnings can be disabled as necessary with the flag \ 
--no-permissions-check.
acme module uses now a POST-as-GET request to retrieve the registration from an \ 
ACME v2 server
Convert the tsig algorithm specified in the certbot_dns_rfc2136 configuration \ 
file to all uppercase letters before validating. This makes the value in the \ 
config case insensitive.
Files:
RevisionActionfile
1.17modifypkgsrc/security/py-acme/Makefile
1.4modifypkgsrc/security/py-acme/distinfo
1.13modifypkgsrc/security/py-certbot/Makefile
1.18modifypkgsrc/security/py-certbot/PLIST
1.32modifypkgsrc/security/py-certbot/distinfo
1.4modifypkgsrc/security/py-certbot-apache/Makefile
1.3modifypkgsrc/security/py-certbot-apache/PLIST
1.4modifypkgsrc/security/py-certbot-apache/distinfo
1.4modifypkgsrc/security/py-certbot-dns-luadns/Makefile
1.4modifypkgsrc/security/py-certbot-dns-luadns/distinfo
1.4modifypkgsrc/security/py-certbot-dns-nsone/Makefile
1.4modifypkgsrc/security/py-certbot-dns-nsone/distinfo
1.5modifypkgsrc/security/py-certbot-dns-ovh/Makefile
1.4modifypkgsrc/security/py-certbot-dns-ovh/distinfo
1.6modifypkgsrc/security/py-certbot-dns-rfc2136/Makefile
1.4modifypkgsrc/security/py-certbot-dns-rfc2136/distinfo
1.5modifypkgsrc/security/py-certbot-dns-route53/Makefile
1.4modifypkgsrc/security/py-certbot-dns-route53/distinfo
1.5modifypkgsrc/security/py-certbot-dns-sakuracloud/Makefile
1.4modifypkgsrc/security/py-certbot-dns-sakuracloud/distinfo
1.5modifypkgsrc/security/py-certbot-nginx/Makefile
1.4modifypkgsrc/security/py-certbot-nginx/distinfo