this post was submitted on 13 Jun 2024
1273 points (98.8% liked)

linuxmemes

20880 readers
8 users here now

I use Arch btw


Sister communities:

Community rules

  1. Follow the site-wide rules and code of conduct
  2. Be civil
  3. Post Linux-related content
  4. No recent reposts

Please report posts and comments that break these rules!

founded 1 year ago
MODERATORS
 

Couldn’t find anything with less pixels, please save to disk and remove resolution yourself ❤️

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 1 points 5 months ago (1 children)

This is confusing to me, because the point of the request seems to be "get a certificate", not "get a self signed certificate generated by running the openssl command". If you know how to get the result, it doesn't really matter if you remembered offhand the shitty way or the overkill way.

Is it really more helpful to say "I remember how to do this, but let me lookup a different way that doesn't use the tools I'm familiar with"?

[–] [email protected] 0 points 5 months ago (1 children)

Okay, I may be the stupid one here. But after a quick search, I don't see an obvious way to generate self-signed certs using certbot. Even letsencrypt's own website suggests using openssl.

[–] [email protected] 1 points 5 months ago (1 children)

I think they generated real certs, rather than self signed.

[–] [email protected] 0 points 5 months ago (1 children)

Then that's actually against what was wanted. To get real certs, you have to open up the server to the internet.

[–] [email protected] 0 points 5 months ago

That's not the case, you just need to be able to make an outbound connection.

The minutiae of how certbot works or if that specific person actually did it right or wrong is kind of aside the point of my "intended to be funny but seemingly was not" comment about how sometimes the easiest solution to implement is the one you remember, even if it's overkill for the immediate problem.