Hi all, I have setup icecast to work with letsencrypt ssl certificate, this works fine. But now I am struggling a bit on how to renew the certificate every 3 months. As per letsencrypt recommendation I run a cronjob to check for renewal every day, problem is when there is a new certificate Icecast needs to be restarted to pick it up, as the certificate only seems to be loaded at startup of icecast. I am thinking of checking if the content of the cert.pem file has been altered or maybe checking the file date to see if it is not older than 1 day or something like that. Regards and tia, Paul -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.xiph.org/pipermail/icecast/attachments/20180906/4b1becc8/attachment.html>
You can add a posthook to your certbot cronjob: certbot renew —post-hook “/etc/init.d/icecast restart” Or however you restart icecast On Thu, Sep 6, 2018 at 13:05 _zer0_ gravity <zer0___ at hotmail.com> wrote:> Hi all, > > > > I have setup icecast to work with letsencrypt ssl certificate, this works > fine. > > But now I am struggling a bit on how to renew the certificate every 3 > months. > > As per letsencrypt recommendation I run a cronjob to check for renewal > every day, > > problem is when there is a new certificate Icecast needs to be restarted > to pick it up, as the certificate only seems to be loaded at startup of > icecast. > > I am thinking of checking if the content of the cert.pem file has been > altered or maybe checking the file date to see if it is not older than 1 > day or something like that. > > > > Regards and tia, > > > > Paul > _______________________________________________ > Icecast mailing list > Icecast at xiph.org > http://lists.xiph.org/mailman/listinfo/icecast >-------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.xiph.org/pipermail/icecast/attachments/20180906/c14ca8f0/attachment-0001.html>
That’s what I have been looking for, thanks ! From: Icecast [mailto:icecast-bounces at xiph.org] On Behalf Of Tycho Eggen Sent: donderdag 6 september 2018 22:21 To: Icecast streaming server user discussions Subject: Re: [Icecast] icecast ssl and letsencrypt renewal You can add a posthook to your certbot cronjob: certbot renew —post-hook “/etc/init.d/icecast restart” Or however you restart icecast On Thu, Sep 6, 2018 at 13:05 _zer0_ gravity <zer0___ at hotmail.com<mailto:zer0___ at hotmail.com>> wrote: Hi all, I have setup icecast to work with letsencrypt ssl certificate, this works fine. But now I am struggling a bit on how to renew the certificate every 3 months. As per letsencrypt recommendation I run a cronjob to check for renewal every day, problem is when there is a new certificate Icecast needs to be restarted to pick it up, as the certificate only seems to be loaded at startup of icecast. I am thinking of checking if the content of the cert.pem file has been altered or maybe checking the file date to see if it is not older than 1 day or something like that. Regards and tia, Paul _______________________________________________ Icecast mailing list Icecast at xiph.org<mailto:Icecast at xiph.org> http://lists.xiph.org/mailman/listinfo/icecast -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.xiph.org/pipermail/icecast/attachments/20180906/dafecca7/attachment.html>