From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <help-guix-bounces+larch=yhetil.org@gnu.org>
Received: from mp0 ([2001:41d0:2:bcc0::])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	by ms0.migadu.com with LMTPS
	id UPssBdAUe2DuDwEAgWs5BA
	(envelope-from <help-guix-bounces+larch=yhetil.org@gnu.org>)
	for <larch@yhetil.org>; Sat, 17 Apr 2021 19:03:12 +0200
Received: from aspmx1.migadu.com ([2001:41d0:2:bcc0::])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits))
	by mp0 with LMTPS
	id gIaGO88Ue2C9VAAA1q6Kng
	(envelope-from <help-guix-bounces+larch=yhetil.org@gnu.org>)
	for <larch@yhetil.org>; Sat, 17 Apr 2021 17:03:11 +0000
Received: from lists.gnu.org (lists.gnu.org [209.51.188.17])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by aspmx1.migadu.com (Postfix) with ESMTPS id 7FB10C6AA
	for <larch@yhetil.org>; Sat, 17 Apr 2021 19:03:11 +0200 (CEST)
Received: from localhost ([::1]:50838 helo=lists1p.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.90_1)
	(envelope-from <help-guix-bounces+larch=yhetil.org@gnu.org>)
	id 1lXoLd-0004p9-WB
	for larch@yhetil.org; Sat, 17 Apr 2021 13:03:10 -0400
Received: from eggs.gnu.org ([2001:470:142:3::10]:58222)
 by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)
 (Exim 4.90_1) (envelope-from <pierre.langlois@gmx.com>)
 id 1lXo7j-0000he-NP
 for help-guix@gnu.org; Sat, 17 Apr 2021 12:48:51 -0400
Received: from mout.gmx.net ([212.227.15.18]:39939)
 by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)
 (Exim 4.90_1) (envelope-from <pierre.langlois@gmx.com>)
 id 1lXo7a-0000P5-NT
 for help-guix@gnu.org; Sat, 17 Apr 2021 12:48:47 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=gmx.net;
 s=badeba3b8450; t=1618678114;
 bh=jZLAwlaKcYU/dg3qXqNjH/zuzLsqCNkgUXBu3+QHnh4=;
 h=X-UI-Sender-Class:References:From:To:Cc:Subject:In-reply-to:Date;
 b=KW3Y7Y3zltO7SQjEs/StqkCH8BAoNDE2iAZPpCeNi74kT2QAFKVliDwFXCQ6Ic73c
 Lq7f+cVNbSNjUU52+xixyYYkTI3ZGRK6kkYEQcytdTglhbroWBv7JeJHaageMyH2On
 rESKr0i/EbtCoEhlj6cWMWSXDqeo86MCVSjReanw=
X-UI-Sender-Class: 01bb95c1-4bf8-414a-932a-4f6e2808ef9c
Received: from labiere ([82.69.64.142]) by mail.gmx.net (mrgmx004
 [212.227.17.184]) with ESMTPSA (Nemesis) id 1MwfWa-1liSOB3t4U-00y77x; Sat, 17
 Apr 2021 18:48:34 +0200
References: <ddf20f7d-60b3-df97-56c3-127a9c83d3ee@raghavgururajan.name>
 <87tuo5mcln.fsf@gmx.com>
 <CAEwRq=pYF5AF7r2MsOqvYmE6eFE_xgVitsEkgaCNhptCG+MA8Q@mail.gmail.com>
User-agent: mu4e 1.4.15; emacs 27.2
From: Pierre Langlois <pierre.langlois@gmx.com>
To: Vincent Legoll <vincent.legoll@gmail.com>
Subject: Re: Certbot with DNS Challenge
In-reply-to: <CAEwRq=pYF5AF7r2MsOqvYmE6eFE_xgVitsEkgaCNhptCG+MA8Q@mail.gmail.com>
Date: Sat, 17 Apr 2021 17:48:32 +0100
Message-ID: <87im4kluvz.fsf@gmx.com>
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="=-=-=";
 micalg=pgp-sha512; protocol="application/pgp-signature"
X-Provags-ID: V03:K1:ZdydbcUXuzVHsydne6I36I56vhii++AjLwAyblT5+SrkrF2PDdh
 voMPOFdGOvozFUbN3NeqdO18aaVK4SRm6ug52Z6gJun08CSKoWODuBOX0BJJNMFAPX4/5PY
 ZNU5T5RDfoYsss5O5Wmikpl8jGlT2Y6eGlxujB+MTxCDhmBVbbWVhAVQIAmMU2W3b2MuMVE
 AJQIh2GNSjmI6LmB4WGLQ==
X-UI-Out-Filterresults: notjunk:1;V03:K0:WORTDhtYZDQ=:7HiLcK6sqUjeB0ghG7/R+z
 i2/zOvwTpC4f/jtQ3O+tELd1GOov7GmmngUmlRvzZEpuVnOaqoAmLObddH/yp8dxEHXPYl8ua
 VFQSkz/knrV+5kmmH7RHNx7t/npn9cg0cyIWYzeDXADyy/M/7phg0wHCkkzC7R7gAGiKvoV1H
 QCZN3Ccq5nN3dCozWANIYdwjn0NAgxWQwTgyxusM3JY6cR3yHstxYKAM1TG9cQvOErU8Izeqm
 YMjA4GyFFNvVuDAPlzY0qRmiU2x+eYrxDRfgeDhCtqwngSAmsOigTjWK+BKJKeWz5X6uy/PyI
 oVoIO83C0ibTEq+hs5JxOeOivo9kVvacQ4mInsovZIr0Mu9LVgG9RsBesDOXZS02+9xDLLoAo
 hCJOId6yP2uTvmblePK3SrZuFJfayrYI9T+R9CguP8QrKDCWDKySrlnioY1iAOsvquLsFvixs
 cQt+ihSIZf3Zma+RDJgMdUlwdw9GgiS6ZsQHi4kqE2q8qtk8ZU6D+ljBcDsKW8LYrybaThK4f
 t8YXyyhxUxjhXFDbdYgmYkvxYHifYNf6q0Vk0Qtp05l1r4huulpU8OEdARiCy6NGiXMsWITLD
 qDEyo7csvTd/dRL7zdEcgcXtA5TsT4m3wtjqhVNaD9Ufe7o7DBx+MgQUwPVX4sgQM7d1dKcoi
 SNVt5pNabKCvt2PYln6OECZj1HthaIYfeJ2EcmgrLNAMmKjg8g3pWZ4p9eiB8DoARAAs1IwMc
 3yC6p8O9igXX6OKtmqa8p7CYCGVawu/hvDDHjS0RmpeWNXXyYKSzzHmhkDgHZtZL3uTI85slJ
 1jU+ws6S3bfY9QqZMMg15ECptQfc32426xOoPKr8lAN77/+ELBbI7gB9YTAjCa2Lz9PnBE/tQ
 vyDof05JVzrnriPEBxe4HhKZ5TjkKyyJUGX3KX9eJtQf0NjoVdXA9NoTLxcULwLn7/PW4c91P
 3cn766mX7WYaZPpMoZo1zths1cctTkrH4Dt4suDtp8zVYuMisBNzutiLypO0HYMU+/tLtbmwj
 qLl1mQ9sEFYTTfRrNwVw1HrkKXantmqKQVS00Bhm9g+Dj7xbALgGM0nEPNsn9B7fnhtamBviI
 PYlzo8EDXKajiJMqHKbq4lEcsckgBj2E+Mu0muav948CTFmAAbkS7qkhjEPp0/fAHWP6WsN1U
 6CteOf1Q8GH9ykfRAjAb1nX5A1kw11YGcoX13GqJbnkx+JBk3NKBRdYiCdshEZW7W1K2K7Y1Q
 WTr6L3/917u6XGSdq
Received-SPF: pass client-ip=212.227.15.18;
 envelope-from=pierre.langlois@gmx.com; helo=mout.gmx.net
X-Spam_score_int: -25
X-Spam_score: -2.6
X-Spam_bar: --
X-Spam_report: (-2.6 / 5.0 requ) BAYES_00=-1.9, DKIM_SIGNED=0.1,
 DKIM_VALID=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7,
 RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001,
 SPF_PASS=-0.001 autolearn=ham autolearn_force=no
X-Spam_action: no action
X-BeenThere: help-guix@gnu.org
X-Mailman-Version: 2.1.23
Precedence: list
List-Id: <help-guix.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/help-guix>,
 <mailto:help-guix-request@gnu.org?subject=unsubscribe>
List-Archive: <https://lists.gnu.org/archive/html/help-guix>
List-Post: <mailto:help-guix@gnu.org>
List-Help: <mailto:help-guix-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/help-guix>,
 <mailto:help-guix-request@gnu.org?subject=subscribe>
Cc: Raghav Gururajan <rg@raghavgururajan.name>, help-guix <help-guix@gnu.org>
Errors-To: help-guix-bounces+larch=yhetil.org@gnu.org
Sender: "Help-Guix" <help-guix-bounces+larch=yhetil.org@gnu.org>
X-Migadu-Flow: FLOW_IN
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=yhetil.org;
	s=key1; t=1618678991;
	h=from:from:sender:sender:reply-to:subject:subject:date:date:
	 message-id:message-id:to:to:cc:cc:mime-version:mime-version:
	 content-type:content-type:in-reply-to:in-reply-to:
	 references:references:list-id:list-help:list-unsubscribe:
	 list-subscribe:list-post:dkim-signature;
	bh=jZLAwlaKcYU/dg3qXqNjH/zuzLsqCNkgUXBu3+QHnh4=;
	b=TPa5RxLNrUDSfwn2oKI9wjn+j5Sje7S14fvcNrXQvmILKcaTB642bEBx8w1CfoX/IzIJVg
	018OrH56Hv5+1KpUnn4C44yHBSIejf+6c22+zRY2FfcI+Zydz/QxDftAiSEX864osutuOh
	LqAaXzF5ZchPag15d1g32Q0U5rcampD/VzC4CAAtUl/U5jFROLdOBMLEwiQY92pKma6lJi
	eY417BrMHdWwVFIy48XdiFjyrhrL4K5tLRUT158g0/17KRczgvu3vTTPRo8gmWktdU+srV
	JVRJfMFTUfY+5JHMQpJDJdRDFHECXKXm0XVW5+AuHz/2cqAoIzyN5Gh8RIW4yQ==
ARC-Seal: i=1; s=key1; d=yhetil.org; t=1618678991; a=rsa-sha256; cv=none;
	b=M1Yne7dxEQUXCu7blCtSVPZ3tNx13CiLdcVD2lqlSrZgYzvWnO+5aPyKpPB0xsLf23Xd7U
	D2VvLPvT6gR4k0YFEgMY3ElEPaXj0wHe4lKKmF+TinFv/BGyPYbZJa5Al7ejOpjy6b9+O5
	W8nJd7bBYD0mYynq02ULiiON6AKhqg7hSR+7uFeYoZCBtDxFaPtYZoUuM2cVknD+Wdyx2x
	EiG2iK+JQv9fELPhwq9Vdl0v3Yj3+ftcioBJkeP565GSXhI4d+DZVw/vk81KxexM6Aj01d
	jyd/h7xZBjeCn2Fo4lbWyTEA3sQVD2+YB+0DEkbrGXCFH3nGfqoVlSinZ0TEbQ==
ARC-Authentication-Results: i=1;
	aspmx1.migadu.com;
	dkim=fail ("headers rsa verify failed") header.d=gmx.net header.s=badeba3b8450 header.b=KW3Y7Y3z;
	dmarc=fail reason="SPF not aligned (relaxed)" header.from=gmx.com (policy=none);
	spf=pass (aspmx1.migadu.com: domain of help-guix-bounces@gnu.org designates 209.51.188.17 as permitted sender) smtp.mailfrom=help-guix-bounces@gnu.org
X-Migadu-Spam-Score: -1.94
Authentication-Results: aspmx1.migadu.com;
	dkim=fail ("headers rsa verify failed") header.d=gmx.net header.s=badeba3b8450 header.b=KW3Y7Y3z;
	dmarc=fail reason="SPF not aligned (relaxed)" header.from=gmx.com (policy=none);
	spf=pass (aspmx1.migadu.com: domain of help-guix-bounces@gnu.org designates 209.51.188.17 as permitted sender) smtp.mailfrom=help-guix-bounces@gnu.org
X-Migadu-Queue-Id: 7FB10C6AA
X-Spam-Score: -1.94
X-Migadu-Scanner: scn0.migadu.com
X-TUID: Iah3t33Nv1y+

--=-=-=
Content-Type: text/plain

Hi Vincent,

Vincent Legoll writes:

> Hello,
>
>> [SNIPPED NICE STUFF]
>
> I think that would make a nice addition to the cookbook
>
> Anyone want to try submitting a PR for that ?

That's a good idea, I can give it a go. Before that it would be useful
to merge support for the --dry-run option in the certbot service, an
entry in the cookbook should probably recommend using it while debugging
the auth&cleanup procedures.

Thanks,
Pierre


--=-=-=
Content-Type: application/pgp-signature; name="signature.asc"

-----BEGIN PGP SIGNATURE-----

iQFMBAEBCgA2FiEEctU9gYy29KFyWDdMqPyeRH9PfVQFAmB7EWAYHHBpZXJyZS5s
YW5nbG9pc0BnbXguY29tAAoJEKj8nkR/T31U8D0H/A7q+fvsSyXnr5o4jDOuy+Zt
x7HUdpnce5SawbvK4UppJCbUUKfMYXyMVOErQ1EUozWEe+FwUS/BdD/YspMxO8yg
sfkQhzEpGVdkGQwR685g62BbxK2dJrQXRYe21J3c9fnzIIz+FpK0hVEWhgO75AZS
v9I0XlJYFeyCi1KQMbJJMLunaQ/qNiGG0vMt2bouf+kOJm257CmRoDVuVFNI5rE8
oTPhsbfJ30/tjhxHm0NC4wcNWuBYdhyCrR/+3NP1dJwJgzhoazxjPs1+fJ8Y7By1
AHENyNxVGux4752CcE0TI6RCZANy5BYEKRTrRePYd9qGxZtd4w341UN6pVMpm+0=
=jRBC
-----END PGP SIGNATURE-----
--=-=-=--