group.of.nepali.translators team mailing list archive

Thread
Date

[Bug 1837673] Re: Certbot will be unable to create new ACME accounts

To: group.of.nepali.translators@xxxxxxxxxxxxxxxxxxx
From: Robie Basak <1837673@xxxxxxxxxxxxxxxxxx>
Date: Tue, 23 Jul 2019 22:39:02 -0000
Reply-to: Bug 1837673 <1837673@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

** Also affects: python-certbot (Ubuntu Xenial)
   Importance: Undecided
       Status: New

** Also affects: python-certbot (Ubuntu Bionic)
   Importance: Undecided
       Status: New

** Changed in: python-certbot (Ubuntu Xenial)
       Status: New => Triaged

** Changed in: python-certbot (Ubuntu Bionic)
       Status: New => Triaged

** Changed in: python-certbot (Ubuntu Xenial)
   Importance: Undecided => High

** Changed in: python-certbot (Ubuntu Bionic)
   Importance: Undecided => High

-- 
You received this bug notification because you are a member of नेपाली
भाषा समायोजकहरुको समूह, which is subscribed to Xenial.
Matching subscriptions: Ubuntu 16.04 Bugs
https://bugs.launchpad.net/bugs/1837673

Title:
  Certbot will be unable to create new ACME accounts

Status in python-certbot package in Ubuntu:
  New
Status in python-certbot source package in Xenial:
  Triaged
Status in python-certbot source package in Bionic:
  Triaged

Bug description:
  This bug affects the python-certbot packages in Xenial and Bionic.
  Cosmic and newer is unaffected.

  To do almost anything in the ACME protocol used by Let's Encrypt and
  Certbot including obtaining and revoking certificates, you need to
  first create an account with the ACME server. Starting in November,
  Certbot will no longer be able to do that with its default
  configuration. This is because as part of pushing people towards the
  standardized version of the protocol, Let's Encrypt is no longer
  letting people create new accounts on their ACMEv1 endpoint. More
  details about this change can be found at
  https://community.letsencrypt.org/t/end-of-life-plan-for-acmev1/88430.

  What this means for Ubuntu users is that new Certbot installations on
  affected systems would need to be given the URL of an alternative ACME
  server in order to work. Existing installations would be unaffected
  for now as long as they don't deactivate their account or delete its
  credentials. They will have additional problems in the future due to
  the additional deprecations described in the link above.

  To solve this problem, I recommend backporting the Certbot packages
  from Cosmic to Bionic and Xenial. There are no breaking changes to the
  public interfaces between versions and I think this results in the
  smallest change to the packages that would resolve this problem while
  sticking to well tested packages.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/python-certbot/+bug/1837673/+subscriptions