Coronium Core - Let’s Encrypt Update
A security release was issued by Let’s Encrypt, which is where the free SSL certificates are provided for Coronium Core installations. This update will apply the current security release.
You only need to update if your Coronium Core (v2.4.0 or updates) instances are already using an HTTPS domain. A server reboot is not required. Once you run this SSL/HTTPS update, you will not need to do so on future Coronium Core updates.
Fresh installs can run through the normal steps outlined for installation, as the SSL/HTTPS installer has been updated to reflect the changes.
From the Let’s Encrypt team:
You need to upgrade your Certbot. Let’s Encrypt permanently disabled the TLS-SNI-01 challenge586 due to a security report, as of 2018-01-09.
To run the update, simply go through the SSL/HTTPS installation as you did previously. Making sure to provide the same information as your current domain name.
Documentation can be found here: https://develephant.github.io/coronium-core-docs/server/guide/ssl/#lets-encrypt
As a reminder, the hostname is the first part of your full domain name. The FQDN is the entire domain name, hostname included.
As a bonus, the update also installs a version of certbot-auto, which should help keep the certbot provisioner and certificates properly up to date when Let’s Encrypt security updates like this arise in the future.
If you have any questions, feel free to ask.
-dev