If you run mypy on Windows (or use --platform to make mypy behave like its on Windows), you'll get the following errors:

certbot/certbot/util.py:303: error: Name 'distro' is not defined
certbot/certbot/util.py:319: error: Name 'distro' is not defined
certbot/certbot/util.py:369: error: Name 'distro' is not defined
certbot/certbot/compat/filesystem.py:76: error: Module has no attribu

The PID 1 process has some special responsibilities in Linux regarding the reaping of zombie processes and proper signal forwarding. Both are ignored in the current version of the docker image. For images which spawn child processes, a proper init process is recommended.

• https://docs.docker.com/config/containers/multi-service_container/
• https://medium.com/@nagarwal/an-init-system-inside-

When the hook script is run, $alias contains the real name of the certificate directory in $CERTDIR. This is useful to know when the domain is a wildcard like "*.my.com", but as far as I can tell it's not documented anywhere.

You can use the AWS CLI config file to retrieve AWS credentials according to the Go SDK documentation here: https://docs.aws.amazon.com/sdk-for-go/v1/developer-guide/configuring-sdk.html

This allows the user to specify the credentials and region of their AWS account in "one" place and then use them in all tools using official AWS SDKs.

This information is very sparsely documented, so could y

In letsencrypt/boulder#4585 we determine the table name for a db.ErrDatabaseOp generated during a Get, Insert, Update, or Delete based on the type of a holder argument interface{}.

This works pretty well but doesn't give the true table name based on how Gorp will map that type to a table.

@rolandshoemaker suggests:

Instead of deriving the table from th

What would you like to have changed?

Add support for DynamoDB as a cluster storage backend

Why is this feature a useful, necessary, and/or important addition to this project?

IMO, it allows people that don't want to manage a Consul cluster or shared filesystem to get the clustering feature on top of DynamoDB, which does not require much effort.

What alternatives are there, or what

Section 8.2 of the ACME spec details exactly how client and server retry should be handled during a challenge validation. We should implement this part of the spec. Namely, retry state needs to be included in the challenge resource, client requests should be throttled, and we should set appropriate retry-after headers on the challenge resource response and include error information about the resul

The ACMEv1 letsencrypt server will stop renewing certificates for clients in mid-2020. The only config change required by clients is to change the url specified in getssl.cfg and to make migration easier we should
a) use the v2 CA by default (ignoring the setting in the config file
b) add a parameter to override (a) just in case

All of our sub-headings have internal anchors, for instance https://letsencrypt.org/docs/challenge-types/#dns-01-challenge. However, it's not easy for people to find and link directly to those. Right now you need to view the page source.

I think we should find a way to make it so that each sub-heading is a link you can click, or right-click and copy, that links to that internal anchor. Also, id

The text should scroll if you make a selection and move the cursor out of vertical bounds of the window, even if the mouse isn't moved. Currently, it only scrolls if the mouse is moved (ever so slightly works).

This bug was introduced during the shiny hard fork.

As @rjkroege mentioned in rjkroege/edwood#288 tokenizing the results of the getarg function would allow for more robust parsing of the given arguments.

Which version of python are you using?

3.8

What operating system and version of operating system are you using?

Debian 10.2

What version of sewer are you using?

0.7.9

What did you do? (be as detailed as you can)

Creating wildcard certificates for a sub domain a cloudflare (*.sub.example.com)

What did you expect to see/happen/not happen?

After the successful creation