Please read this before reporting a bug:
https://wiki.archlinux.org/title/Bug_reporting_guidelines
Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.
REPEAT: Do NOT report bugs for outdated packages!
https://wiki.archlinux.org/title/Bug_reporting_guidelines
Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.
REPEAT: Do NOT report bugs for outdated packages!
FS#47579 - [letsencrypt] should not require running as root
Attached to Project:
Community Packages
Opened by Jamin Collins (jamincollins) - Thursday, 31 December 2015, 17:28 GMT
Last edited by Bruno Pagani (ArchangeGabriel) - Tuesday, 26 December 2017, 13:13 GMT
Opened by Jamin Collins (jamincollins) - Thursday, 31 December 2015, 17:28 GMT
Last edited by Bruno Pagani (ArchangeGabriel) - Tuesday, 26 December 2017, 13:13 GMT
|
DetailsDescription:
After installation, letsencrypt can not be run as a normal user. This appears to be due to permissions on the log and configuration directories: $ ls -ld /var/log/letsencrypt drwx------ 2 root root 4096 Dec 15 19:52 /var/log/letsencrypt $ ls -ld /etc/letsencrypt/ drwxr-xr-x 2 root root 4096 Dec 15 19:52 /etc/letsencrypt/ While many of the actions performed by letsencrypt require root access (automated script installation and such), not all of them do. Specifically, the documented option "certonly --manual" (https://letsencrypt.readthedocs.org/en/latest/using.html#manual). It should be possible to run letsencrypt as a normal (admin) user in these circumstances. Additional info: * letsencrypt 0.1.1-1 Steps to reproduce: * install letsencrypt * run letsencrypt as a normal user: $ letsencrypt An unexpected error occurred: IOError: [Errno 13] Permission denied: '/var/log/letsencrypt/letsencrypt.log' Please see the logfile 'letsencrypt.log' for more details. |
This task depends upon
Closed by Bruno Pagani (ArchangeGabriel)
Tuesday, 26 December 2017, 13:13 GMT
Reason for closing: Won't implement
Additional comments about closing: Use certbot-user from the AUR or just use another Let’s Encrypt client.
Certbot is not fully designed for that purpose.
Tuesday, 26 December 2017, 13:13 GMT
Reason for closing: Won't implement
Additional comments about closing: Use certbot-user from the AUR or just use another Let’s Encrypt client.
Certbot is not fully designed for that purpose.
"...it is theoretically possible to run without root privileges, but for most users who want to avoid running an ACME client as root, either letsencrypt-nosudo or simp_le are more appropriate choices."
But I agree with Felix that this is not suited for the default package, because then it wouldn’t work as intended by upstream.