From nobody Sun Apr 21 03:13:46 2024
X-Original-To: freebsd-questions@mlmmj.nyi.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
	by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4VMYPk0tQhz5HHNN
	for <freebsd-questions@mlmmj.nyi.freebsd.org>; Sun, 21 Apr 2024 03:14:02 +0000 (UTC)
	(envelope-from paulbeard@gmail.com)
Received: from mail-lf1-x130.google.com (mail-lf1-x130.google.com [IPv6:2a00:1450:4864:20::130])
	(using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits)
	 key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256
	 client-signature RSA-PSS (2048 bits) client-digest SHA256)
	(Client CN "smtp.gmail.com", Issuer "GTS CA 1D4" (verified OK))
	by mx1.freebsd.org (Postfix) with ESMTPS id 4VMYPj5czXz4D1r
	for <freebsd-questions@freebsd.org>; Sun, 21 Apr 2024 03:14:01 +0000 (UTC)
	(envelope-from paulbeard@gmail.com)
Authentication-Results: mx1.freebsd.org;
	none
Received: by mail-lf1-x130.google.com with SMTP id 2adb3069b0e04-5196c755e82so4588158e87.0
        for <freebsd-questions@freebsd.org>; Sat, 20 Apr 2024 20:14:01 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20230601; t=1713669238; x=1714274038; darn=freebsd.org;
        h=cc:to:subject:message-id:date:from:in-reply-to:references
         :mime-version:from:to:cc:subject:date:message-id:reply-to;
        bh=/ydsLKiKkMcqP53KOFRQeWQuCSk/1Jh4YF4h7zRMYRI=;
        b=kP8cr3b/aSrA4bkk8iCjJe9sEwCCrvBSyqHh+u49ZVJd+xtbXg38wwKhpK9J41/oe/
         AXosiyuTxh9fs78FVEe2WTeZTIsPd4ViH02/ca486S0JGP4CQyBDQol5Elg2b/7tX3Sg
         1HdoWgZKVYjS4X36bhbtqgNJ0qsb2zHR45Ps4bcwGSX0ot2ulmlmzVKqPneNfVu0zfYG
         WZH64KJHemot316AUoVSRzHlJxPMkXozU6qekbSy5PdWR/hrDIPnX4Sgfr9oMhMfEgSq
         PJnJbG9lgzPkABG8DURIqOVKxWzu51ze4AH0d/8m3qKtxrIFxGAwO7MFczzUPJA/M42j
         feRQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20230601; t=1713669238; x=1714274038;
        h=cc:to:subject:message-id:date:from:in-reply-to:references
         :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id
         :reply-to;
        bh=/ydsLKiKkMcqP53KOFRQeWQuCSk/1Jh4YF4h7zRMYRI=;
        b=l9a0ChQ/js8Lpg0283Hfvmcn+sikcckeeoTTHwilY05O1JrVY8b8xtxzlhW/NAYwSd
         J/aKma2hjofs//J+LVD1hl47Qz0NGBlZGGypGaI3v0ErhtvJue1SztyNxkPAEABtONyy
         1Bw/RNoSCSgGe22+KuNW0RNk473s1SgHTeTwgFmsz7L0Gl/7xse3B7uY2qWVpfZ3aMMd
         p1swsgQWadTMyPWEbY73Pg+py1tJoj9NZkaCQlb93dElZgZHU0Dt4vfqSuMRs/xWCKdt
         uUv6XpMLiJf4EpfJGvkC5gpZ/nOx6lLMcaUQmGzU6//kQoVaQLCRICTsTiO7123wckPQ
         DB+A==
X-Gm-Message-State: AOJu0YxLIwL2gGaB1eg83LLuxvGJtRWKAt4HUr9TQFKX/FwLfqNGFT+K
	fgHuLvjvs/p+yOsWApvX46+bD//+z10yrYppBtRsGrNLIwBQ/LoruCSgHeZ5dRPAeeOn/6hEOQe
	QHexKB2q/vmdlFvbWlE0wSWg6VcpRPA==
X-Google-Smtp-Source: AGHT+IEDKuXfqa05hiiYvaVX6DRVS/pkkZEdzFiDOOj1tHm3SvADqGo5dGlhoC/90yIsy7xn75XDBP5/IwN/ov2u7qg=
X-Received: by 2002:ac2:5f5c:0:b0:516:d0c0:3c5 with SMTP id
 28-20020ac25f5c000000b00516d0c003c5mr3627247lfz.24.1713669237581; Sat, 20 Apr
 2024 20:13:57 -0700 (PDT)
List-Id: User questions <freebsd-questions.freebsd.org>
List-Archive: https://lists.freebsd.org/archives/freebsd-questions
List-Help: <mailto:questions+help@freebsd.org>
List-Post: <mailto:questions@freebsd.org>
List-Subscribe: <mailto:questions+subscribe@freebsd.org>
List-Unsubscribe: <mailto:questions+unsubscribe@freebsd.org>
X-BeenThere: freebsd-questions@freebsd.org
Sender: owner-freebsd-questions@FreeBSD.org
MIME-Version: 1.0
References: <CAMtcK2pTKSHpOCKhEdWSvLyT1fBvjm50zZ8LhF-jbDjmFzBJGA@mail.gmail.com>
 <20240421024338.4F7E5891631C@ary.qy>
In-Reply-To: <20240421024338.4F7E5891631C@ary.qy>
From: paul beard <paulbeard@gmail.com>
Date: Sat, 20 Apr 2024 20:13:46 -0700
Message-ID: <CAMtcK2px1zjpzNW085NZ=4LVK+YTuXayaVZFuQX6oGypvzafLQ@mail.gmail.com>
Subject: Re: certbot
To: John Levine <johnl@iecc.com>
Cc: freebsd-questions@freebsd.org
Content-Type: multipart/alternative; boundary="0000000000002b32a8061692b6e3"
X-Spamd-Bar: ----
X-Rspamd-Pre-Result: action=no action;
	module=replies;
	Message is reply to one we originated
X-Spamd-Result: default: False [-4.00 / 15.00];
	REPLY(-4.00)[];
	ASN(0.00)[asn:15169, ipnet:2a00:1450::/32, country:US]
X-Rspamd-Queue-Id: 4VMYPj5czXz4D1r

--0000000000002b32a8061692b6e3
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable

It ain't broke, so I am not inclined to fix it. And that example came from
the Let's Encrypt docs so I can circle back to them if I have problems.

The question at hand is why OP can't use something as straightforward as
what I run. Why does he need to run it with environment variables where I
don't?

On Sat, Apr 20, 2024 at 7:43=E2=80=AFPM John Levine <johnl@iecc.com> wrote:

> It appears that paul beard <paulbeard@gmail.com> said:
> >-=3D-=3D-=3D-=3D-=3D-
> >
> >The meta question for me and perhaps others running FreeBSD 13 is what
> >changed and how do we prepare for it if we expect to run certbot in
> FreeBSD
> >14? I run it as I always have, since release 11 or so.
> >
> >00 00 * * Sun   python -c 'import random; import time;
> >time.sleep(random.random() * 3600)' && /usr/local/bin/certbot renew
> >--renew-hook 'service nginx reload'
> >
> >Will I need to change that? Do the folks at EFF know/have they documente=
d
> >what changed and how to manage it?
>
> I don't see any reason that won't work, but there are much easier ways to
> do a
> random sleep up to an hour, e.g.
>
> 00 00 * * Sun   sleep $(jot -r 1 1 3600); certbot renew --renew-hook
> 'service nginx reload'
>
>

--=20
Paul Beard / www.paulbeard.org/

--0000000000002b32a8061692b6e3
Content-Type: text/html; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable

<div dir=3D"ltr">It ain&#39;t broke, so I am not inclined=C2=A0to fix it. A=
nd that example came from the Let&#39;s Encrypt docs so I can circle back t=
o them=C2=A0if I have problems.=C2=A0<div><br></div><div>The question at ha=
nd is why OP can&#39;t use something=C2=A0as straightforward=C2=A0as what I=
 run. Why does he need to run it with environment variables where I don&#39=
;t?=C2=A0</div></div><br><div class=3D"gmail_quote"><div dir=3D"ltr" class=
=3D"gmail_attr">On Sat, Apr 20, 2024 at 7:43=E2=80=AFPM John Levine &lt;<a =
href=3D"mailto:johnl@iecc.com">johnl@iecc.com</a>&gt; wrote:<br></div><bloc=
kquote class=3D"gmail_quote" style=3D"margin:0px 0px 0px 0.8ex;border-left-=
width:1px;border-left-style:solid;border-left-color:rgb(204,204,204);paddin=
g-left:1ex">It appears that paul beard &lt;<a href=3D"mailto:paulbeard@gmai=
l.com" target=3D"_blank">paulbeard@gmail.com</a>&gt; said:<br>
&gt;-=3D-=3D-=3D-=3D-=3D-<br>
&gt;<br>
&gt;The meta question for me and perhaps others running FreeBSD 13 is what<=
br>
&gt;changed and how do we prepare for it if we expect to run certbot in Fre=
eBSD<br>
&gt;14? I run it as I always have, since release 11 or so.<br>
&gt;<br>
&gt;00 00 * * Sun=C2=A0 =C2=A0python -c &#39;import random; import time;<br=
>
&gt;time.sleep(random.random() * 3600)&#39; &amp;&amp; /usr/local/bin/certb=
ot renew<br>
&gt;--renew-hook &#39;service nginx reload&#39;<br>
&gt;<br>
&gt;Will I need to change that? Do the folks at EFF know/have they document=
ed<br>
&gt;what changed and how to manage it?<br>
<br>
I don&#39;t see any reason that won&#39;t work, but there are much easier w=
ays to do a<br>
random sleep up to an hour, e.g.<br>
<br>
00 00 * * Sun=C2=A0 =C2=A0sleep $(jot -r 1 1 3600); certbot renew --renew-h=
ook &#39;service nginx reload&#39;<br>
<br>
</blockquote></div><br clear=3D"all"><div><br></div><span class=3D"gmail_si=
gnature_prefix">-- </span><br><div dir=3D"ltr" class=3D"gmail_signature">Pa=
ul Beard / <a href=3D"http://www.paulbeard.org/" target=3D"_blank">www.paul=
beard.org/</a><br></div>

--0000000000002b32a8061692b6e3--