Letsencrypt

From annawiki

Configuration

Key size 4096

letsencrypt run --domains anna.info www.anna.info --rsa-key-size 4096
certbot certonly --webroot -w /var/www -d anna.info,www.anna.info --rsa-key-size 4096
alias get-cert='letsencrypt certonly -d'
alias letsencrypt='certbot --webroot -w /var/www --rsa-key-size 4096'

SSLCipherSuite ...

without www

certbot certonly --webroot -w /var/www -d anna.info --rsa-key-size 4096

if (only) X domains are removed, it could be needed to use --force-renew

Issues

Having VirtualHost

ServerName anna.info
ServerAlias www.anna.info

running

letsencrypt run --domains www.anna.info

may remove a prior cert for anna.info