search

kuba / simp_le

Simple Let's Encrypt Client
GNU General Public License v3.0
884 stars 59 forks source link

Cleanup webroot #28

Open mikedevita opened 9 years ago

mikedevita commented 9 years ago

I am using the following script to generate certificates and noticed the /tmp/letsencrypt dir contents are left intact even after ssl generation. Should I be deleting these after generation?

DOMAIN=domain.com;
sudo mkdir /etc/nginx/ssl/${DOMAIN};
sudo chmod 700 /etc/nginx/ssl/${DOMAIN};
cd /etc/nginx/ssl/${DOMAIN};
simp_le -d ${DOMAIN}:/tmp/letsencrypt -f key.pem -f cert.pem -f fullchain.pem
sudo chmod -R 400 /etc/nginx/ssl/${DOMAIN}/*;
kuba commented 9 years ago

I don't believe that leaving those files poses any security risk, but it would be better if client cleaned up after itself.