Let's Encrypt certbot validation over HTTPS

ssl lets-encrypt

As reported in https://community.letsencrypt.org/t/shouldnt-verification-via-dns-record-be-a-priority/604/47 the letsencrypt.sh updater supports validation via DNS. Few updater scripts seem to have implemented this. However, the HTTP method is the simplest to implement for initial configuration.

The script you have may use TNS SNI or Proof of Possession of a Prior Key for renewals. Specification can be found at https://datatracker.ietf.org/doc/html/draft-ietf-acme-acme-01#section-7.5. If this is the case you won't need to have HTTP enabled.

Related

Check for hard disk errors / signs of failure on CentOS Server
What is the fall off of subsecond throughput on Ethernet Network Interfaces
How to debug apache timeouts?
Best Practices for virtualizing servers onto the SAN?
iptables NEW connections vs. --syn
nginx : upstream with multiple server directives?
How to automatically update nginx upstream server list when aws ec2 hostname changes or increases?
Tape encryption management & best practices
IIS 7.5 on Windows 7 x64 Ultimate is missing the Management Service icon
Domain pointing to wrong IP address but DNS records seems correct
What should a hosting company do to prepare for IPv6?
Why is scp not overwriting my destination file?