New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Comments
Yeah, but that is... not very automagic and you get a bigger attack surface. I tought of it, I didn't want to access my dns provider progammatically either.
You can use acme-dns which is a separate DNS server that only handles Let's Encrypt validation. You CNAME the _acme-challenge subdomain to it. Let's Encrypt is fine with IPv6-only DNS servers so you can just run it on a spare IPv6 address.