./security/py-certbot, Client for the Lets Encrypt CA

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]


Branch: CURRENT, Version: 1.2.0, Package name: py37-certbot-1.2.0, Maintainer: adam

Certbot, previously the Let's Encrypt Client, is EFF's tool to
obtain certs from Let's Encrypt, and (optionally) autoenable HTTPS
on your server. It can also act as a client for any other CA that
uses the ACME protocol.


Required to run:
[devel/py-setuptools] [devel/py-ZopeInterface] [time/py-pytz] [time/py-parsedatetime] [devel/py-mock] [security/py-cryptography] [devel/py-ZopeComponent] [devel/py-configobj] [devel/py-configargparse] [time/py-rfc3339] [security/py-acme] [security/py-josepy] [lang/python37] [devel/py-distro]

Required to build:
[pkgtools/cwrappers]

Master sites:

SHA1: 78f0c36e6ac106093a3a43999ecd648004565e4a
RMD160: 002badc4071c3bffe8409e9c6a6bcffe22b78af8
Filesize: 350.592 KB

Version history: (Expand)


CVS history: (Expand)


   2020-02-16 21:23:28 by Adam Ciarcinski | Files touched by this commit (18) | Package updated
Log message:
py-acme py-certbot: updated to 1.2.0

1.2.0:

Added
Added support for Cloudflare's limited-scope API Tokens
Added support for $hostname in nginx server_name directive

Changed
Add directory field to error message when field is missing.
If MD5 hasher is not available, try it in non-security mode (fix for FIPS systems)
Disable old SSL versions and ciphersuites and remove SSLCompression off setting \ 
to follow Mozilla recommendations in Apache.
Remove ECDHE-RSA-AES128-SHA from NGINX ciphers list now that Windows 2008 R2 and \ 
Windows 7 are EOLed
Support for Python 3.4 has been removed.

Fixed
Fix collections.abc imports for Python 3.9.
More details about these changes can be found on our GitHub repo.

1.1.0:

Changed
Removed the fallback introduced with 0.34.0 in acme to retry a POST-as-GET \ 
request as a GET request when the targeted ACME CA server seems to not support \ 
POST-as-GET requests.
certbot-auto no longer supports architectures other than x86_64 on RHEL 6 based \ 
systems. Existing certbot-auto installations affected by this will continue to \ 
work, but they will no longer receive updates. To install a newer version of \ 
Certbot on these systems, you should update your OS.
Support for Python 3.4 in Certbot and its ACME library is deprecated and will be \ 
removed in the next release of Certbot. certbot-auto users on x86_64 systems \ 
running RHEL 6 or derivatives will be asked to enable Software Collections (SCL) \ 
repository so Python 3.6 can be installed. certbot-auto can enable the SCL repo \ 
for you on CentOS 6 while users on other RHEL 6 based systems will be asked to \ 
do this manually.
   2019-12-30 20:43:56 by =?UTF-8?B?RnLDqWTDqXJpYyBGYXViZXJ0ZWF1?= | Files touched by this commit (1)
Log message:
py-cerbot: add py-certbot-dns-digitalocean in comments
   2019-12-15 10:48:39 by Adam Ciarcinski | Files touched by this commit (33) | Package updated
Log message:
py-acme/py-cerbot-*: updated to 1.0.0

Certbot 1.0.0

Removed:
* The docs extras for the certbot-apache and certbot-nginx packages
  have been removed.

Changed:
* certbot-auto has deprecated support for systems using OpenSSL 1.0.1 that are
  not running on x86-64. This primarily affects RHEL 6 based systems.
* Certbot's config_changes subcommand has been removed
* certbot.plugins.common.TLSSNI01 has been removed.
* Deprecated attributes related to the TLS-SNI-01 challenge in
  acme.challenges and acme.standalone
  have been removed.
* The functions certbot.client.view_config_changes,
  certbot.main.config_changes,
  certbot.plugins.common.Installer.view_config_changes,
  certbot.reverter.Reverter.view_config_changes, and
  certbot.util.get_systemd_os_info have been removed
* Certbot's register --update-registration subcommand has been removed
* When possible, default to automatically configuring the webserver so all requests
  redirect to secure HTTPS access. This is mostly relevant when running Certbot
  in non-interactive mode. Previously, the default was to not redirect all requests.
   2019-11-14 19:28:19 by Adam Ciarcinski | Files touched by this commit (17) | Package updated
Log message:
py-certbot: updated to 0.40.1

0.40.1:

Changed
Added back support for Python 3.4 to Certbot components and certbot-auto due to \ 
a bug when requiring Python 2.7 or 3.5+ on RHEL 6 based systems.
More details about these changes can be found on our GitHub repo.

0.40.0:

Changed
We deprecated support for Python 3.4 in Certbot and its ACME library. Support \ 
for Python 3.4 will be removed in the next major release of Certbot. \ 
certbot-auto users on RHEL 6 based systems will be asked to enable Software \ 
Collections (SCL) repository so Python 3.6 can be installed. certbot-auto can \ 
enable the SCL repo for you on CentOS 6 while users on other RHEL 6 based \ 
systems will be asked to do this manually.
--server may now be combined with --dry-run. Certbot will, as before, use the \ 
staging server instead of the live server when --dry-run is used.
--dry-run now requests fresh authorizations every time, fixing the issue where \ 
it was prone to falsely reporting success.
Updated certbot-dns-google to depend on newer versions of \ 
google-api-python-client and oauth2client.
The OS detection logic again uses distro library for Linux OSes
certbot.plugins.common.TLSSNI01 has been deprecated and will be removed in a \ 
future release.
CLI flags --tls-sni-01-port and --tls-sni-01-address have been removed.
The values tls-sni and tls-sni-01 for the --preferred-challenges flag are no \ 
longer accepted.
Removed the flags: --agree-dev-preview, --dialog, and --apache-init-script
acme.standalone.BaseRequestHandlerWithLogging and \ 
acme.standalone.simple_tls_sni_01_server have been deprecated and will be \ 
removed in a future release of the library.
certbot-dns-rfc2136 now use TCP to query SOA records.

Fixed
More details about these changes can be found on our GitHub repo.
   2019-10-02 19:36:44 by Adam Ciarcinski | Files touched by this commit (43) | Package updated
Log message:
py-acme/py-certbot: updated to 0.39.0

0.39.0:

Added
Support for Python 3.8 was added to Certbot and all of its components.
Support for CentOS 8 was added to certbot-auto.

Changed
Don't send OCSP requests for expired certificates
Return to using platform.linux_distribution instead of distro.linux_distribution \ 
in OS fingerprinting for Python < 3.8
Updated the Nginx plugin's TLS configuration to keep support for some versions \ 
of IE11.

Fixed
Fixed OS detection in the Apache plugin on RHEL 6.
   2019-10-02 12:40:56 by =?UTF-8?B?RnLDqWTDqXJpYyBGYXViZXJ0ZWF1?= | Files touched by this commit (1) | Package updated
Log message:
py-certbot: update to 0.38nb3

pkgsrc changes
--------------
* s/wip/devel/ for py-distro dependency (wip was for test only but
  committed by inattention)
   2019-10-02 10:38:42 by Thomas Klausner | Files touched by this commit (1)
Log message:
py-certbot: wip dependencies are not allowed in main pkgsrc
   2019-10-01 15:53:45 by Thomas Klausner | Files touched by this commit (1) | Package updated
Log message:
py-certbot: bump PKGREVISION for added dependency