On 9/1/18 1:12 PM, Rainer Duffner wrote:
Am 01.09.2018 um 18:00 schrieb Leon Fauster via CentOS centos@centos.org:
Out of curiosity - do you change also the private key every time?
I’m pretty sure LE creates a new private key, too.
I just checked on my box and confirm that yes, with every renewal of certificate new key is created. I should realize that fact even before looking, as it is asymmetric encryption pair, thus the new pair cert+key is generated (and the cert [request] gets signed).
Valeri
From a cursory glance at lego’s certificate directory on a server with a couple of dozens of LE certificates at least.
After all, changing the private key is what this is all about (showing that you’re still in charge).
CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos