All Versions
81
Latest Version
Avg Release Cycle
25 days
Latest Release
1472 days ago

Changelog History
Page 2

  • v1.1.0 Changes

    January 14, 2020

    ๐Ÿ”„ Changed

    • โœ‚ Removed the fallback introduced with 0.34.0 in acme to retry a POST-as-GET
      ๐Ÿ‘€ request as a GET request when the targeted ACME CA server seems to not support
      POST-as-GET requests.
    • ๐Ÿ‘ certbot-auto no longer supports architectures other than x86_64 on RHEL 6
      based systems. Existing certbot-auto installations affected by this will
      โšก๏ธ continue to work, but they will no longer receive updates. To install a
      ๐Ÿ†• newer version of Certbot on these systems, you should update your OS.
    • ๐Ÿ‘Œ Support for Python 3.4 in Certbot and its ACME library is deprecated and will be
      โœ‚ removed in the next release of Certbot. certbot-auto users on x86_64 systems running
      RHEL 6 or derivatives will be asked to enable Software Collections (SCL) repository
      so Python 3.6 can be installed. certbot-auto can enable the SCL repo for you on CentOS 6
      while users on other RHEL 6 based systems will be asked to do this manually.

    More details about these changes can be found on our GitHub repo.

  • v1.0.0 Changes

    December 03, 2019

    โœ‚ Removed

    • ๐Ÿ“ฆ The docs extras for the certbot-apache and certbot-nginx packages
      ๐Ÿšš have been removed.

    ๐Ÿ”„ Changed

    • ๐Ÿ—„ certbot-auto has deprecated support for systems using OpenSSL 1.0.1 that are
      not running on x86-64. This primarily affects RHEL 6 based systems.
    • ๐Ÿšš Certbot's config_changes subcommand has been removed
    • ๐Ÿšš certbot.plugins.common.TLSSNI01 has been removed.
    • ๐Ÿ—„ Deprecated attributes related to the TLS-SNI-01 challenge in
      acme.challenges and acme.standalone
      ๐Ÿšš have been removed.
    • The functions certbot.client.view_config_changes,
      certbot.main.config_changes,
      certbot.plugins.common.Installer.view_config_changes,
      certbot.reverter.Reverter.view_config_changes, and
      certbot.util.get_systemd_os_info have been removed
    • โšก๏ธ Certbot's register --update-registration subcommand has been removed
    • ๐Ÿ”ง When possible, default to automatically configuring the webserver so all requests
      redirect to secure HTTPS access. This is mostly relevant when running Certbot
      0๏ธโƒฃ in non-interactive mode. Previously, the default was to not redirect all requests.
  • v0.40.1 Changes

    November 06, 2019

    ๐Ÿ”„ Changed

    • โž• Added back support for Python 3.4 to Certbot components and certbot-auto due to a bug when requiring Python 2.7 or 3.5+ on RHEL 6 based systems.

    More details about these changes can be found on our GitHub repo.

  • v0.40.0 Changes

    November 05, 2019

    โž• Added

    *

    ๐Ÿ”„ Changed

    • ๐Ÿ—„ We deprecated support for Python 3.4 in Certbot and its ACME library. Support for Python 3.4 will be removed in the next major release of Certbot. certbot-auto users on RHEL 6 based systems will be asked to enable Software Collections (SCL) repository so Python 3.6 can be installed. certbot-auto can enable the SCL repo for you on CentOS 6 while users on other RHEL 6 based systems will be asked to do this manually.
    • --server may now be combined with --dry-run. Certbot will, as before, use the staging server instead of the live server when --dry-run is used.
    • --dry-run now requests fresh authorizations every time, fixing the issue where it was prone to falsely reporting success.
    • โšก๏ธ Updated certbot-dns-google to depend on newer versions of google-api-python-client and oauth2client.
    • ๐Ÿง The OS detection logic again uses distro library for Linux OSes
    • ๐Ÿšš certbot.plugins.common.TLSSNI01 has been deprecated and will be removed in a future release.
    • ๐Ÿšš CLI flags --tls-sni-01-port and --tls-sni-01-address have been removed.
    • The values tls-sni and tls-sni-01 for the --preferred-challenges flag are no longer accepted.
    • โœ‚ Removed the flags: --agree-dev-preview, --dialog, and --apache-init-script
    • acme.standalone.BaseRequestHandlerWithLogging and acme.standalone.simple_tls_sni_01_server have been deprecated and will be removed in a future release of the library.
    • certbot-dns-rfc2136 now use TCP to query SOA records.

    ๐Ÿ›  Fixed

    *

    More details about these changes can be found on our GitHub repo.

  • v0.39.0 Changes

    October 01, 2019

    โž• Added

    • ๐Ÿ‘Œ Support for Python 3.8 was added to Certbot and all of its components.
    • ๐Ÿ‘Œ Support for CentOS 8 was added to certbot-auto.

    ๐Ÿ”„ Changed

    • Don't send OCSP requests for expired certificates
    • ๐Ÿง Return to using platform.linux_distribution instead of distro.linux_distribution in OS fingerprinting for Python < 3.8
    • โšก๏ธ Updated the Nginx plugin's TLS configuration to keep support for some versions of IE11.

    ๐Ÿ›  Fixed

    • ๐Ÿ›  Fixed OS detection in the Apache plugin on RHEL 6.

    More details about these changes can be found on our GitHub repo.

  • v0.38.0 Changes

    September 03, 2019

    โž• Added

    • Disable session tickets for Nginx users when appropriate.

    ๐Ÿ”„ Changed

    • ๐Ÿ”ง If Certbot fails to rollback your server configuration, the error message links to the Let's Encrypt forum. Change the link to the Help category now that the Server category has been closed.
    • ๐Ÿง Replace platform.linux_distribution with distro.linux_distribution as a step towards Python 3.8 support in Certbot.

    ๐Ÿ›  Fixed

    • ๐Ÿ›  Fixed OS detection in the Apache plugin on Scientific Linux.

    More details about these changes can be found on our GitHub repo.

  • v0.37.2 Changes

    August 21, 2019
    • Stop disabling TLS session tickets in Nginx as it caused TLS failures on some systems.

    More details about these changes can be found on our GitHub repo.

  • v0.37.1 Changes

    August 08, 2019

    ๐Ÿ›  Fixed

    • Stop disabling TLS session tickets in Apache as it caused TLS failures on some systems.

    More details about these changes can be found on our GitHub repo.

  • v0.37.0 Changes

    August 07, 2019

    โž• Added

    • 0๏ธโƒฃ Turn off session tickets for apache plugin by default
    • acme: Authz deactivation added to acme module.

    ๐Ÿ”„ Changed

    • Follow updated Mozilla recommendations for Nginx ssl_protocols, ssl_ciphers, and ssl_prefer_server_ciphers

    ๐Ÿ›  Fixed

    • ๐Ÿ›  Fix certbot-auto failures on RHEL 8.

    More details about these changes can be found on our GitHub repo.

  • v0.36.0 Changes

    July 11, 2019

    โž• Added

    • 0๏ธโƒฃ Turn off session tickets for nginx plugin by default
    • โž• Added missing error types from RFC8555 to acme

    ๐Ÿ”„ Changed

    • ๐Ÿ‘Œ Support for Ubuntu 14.04 Trusty has been removed.
    • โšก๏ธ Update the 'manage your account' help to be more generic.
    • ๐Ÿ”Œ The error message when Certbot's Apache plugin is unable to modify your Apache configuration has been improved.
    • ๐Ÿ—„ Certbot's config_changes subcommand has been deprecated and will be removed in a future release.
    • certbot config_changes no longer accepts a --num parameter.
    • The functions certbot.plugins.common.Installer.view_config_changes and certbot.reverter.Reverter.view_config_changes have been deprecated and will be removed in a future release.

    ๐Ÿ›  Fixed

    • Replace some unnecessary platform-specific line separation.

    More details about these changes can be found on our GitHub repo.