Bug ID 1051889
Summary certbot installs staging certificates by default
Classification openSUSE
Product openSUSE Distribution
Version Leap 42.3
Hardware x86-64
OS openSUSE 42.3
Status NEW
Severity Normal
Priority P5 - None
Component Network
Assignee bnc-team-screening@forge.provo.novell.com
Reporter opensuse@trummer.xyz
QA Contact qa-bugs@suse.de
Found By ---
Blocker --- 

certbot (Let's Encrypt SSL certificate tool) will autheticate with the staging
LE server and thus install invalid certificates by default.

Config file /etc/certbot/cli.ini
Relevant section:

# The staging/testing server
server = https://acme-staging.api.letsencrypt.org/directory
# The production server.
# server = https://acme-v01.api.letsencrypt.org/directory

It should be the other way round, with the second option uncommented instead of
the first.
(the dev.cli file uses the staging server too, but it's wanted there)

You are receiving this mail because: