ThiefMaster
commented
7 years ago Why revoke it? It's not common to revoke certs when replacing them with a new one, unless their key has been compromised.
Open ibotty opened 8 years ago
ThiefMaster
commented
7 years ago Why revoke it? It's not common to revoke certs when replacing them with a new one, unless their key has been compromised.
ibotty
commented
7 years ago You are right.
Maybe use a label
butter.sh/letsencrypt-cert-idwhich implements the grouping, or group by namespace only.An open question is still, whether requesting a new certificate that contains a domain whose original certificate had been signed just recently is a problem. This old certificate has to be properly revoked afterwards as well.