mirror/infrastructure
1
1
Fork 0
mirror of https://gitlab.archlinux.org/archlinux/infrastructure.git synced 2025-01-18 08:06:16 +01:00
Code Issues
fail2ban-incremental-ban
infrastructure/roles/certbot/files/certbot-renewal.service
Kristian Klausen b0d30dd475 certbot: Disable built-in random-sleep 
certbot by default sleep 1-480 seconds before renewing, to avoid all
people renewing at :00. In our case the logic is is unnecessary as
systemd is handling it (RandomizedDelaySec=24h).
2020-10-17 12:31:01 +02:00

11 lines
313 B
SYSTEMD
Raw Permalink Blame History

[Unit]
Description=Let's Encrypt renewal
[Service]
Type=oneshot
ExecStart=/usr/bin/certbot renew --rsa-key-size 4096 \
--no-random-sleep-on-renew \
--pre-hook "/etc/letsencrypt/hook.sh pre" \
--post-hook "/etc/letsencrypt/hook.sh post" \
--renew-hook "/etc/letsencrypt/hook.sh renew"
View Git Blame Copy Permalink