Bug #13495: ACME package's "DNS-Sleep" field's help text is incorrect - pfSense Packages - pfSense bugtracker

Actions

Copy link

Bug #13495

closed

ACME package's "DNS-Sleep" field's help text is incorrect

Added by Sean McBride over 1 year ago. Updated over 1 year ago.

Status:

Resolved

Priority:

Normal

Assignee:

Jim Pingle

Category:

ACME

Target version:

Start date:

Due date:

% Done:

100%

Estimated time:

Plus Target Version:

Affected Version:

Affected Plus Version:

22.05

Affected Architecture:

Description

The help text under the "DNS-Sleep" field says:

"When using a DNS validation method configure how much time to wait before attempting verification after the txt records are added. Defaults to 120 seconds."

This is incorrect. It does not match acme.sh docs: https://github.com/acmesh-official/acme.sh/wiki/dnscheck

1. pfsense is clearly not defaulting to 120. Leaving that text field empty (the default) corresponds to not passing the `--dnssleep` flag at all (which is a desirable option, and reasonable default).

2. the purpose of the field is not to "configure how much time to wait before attempting verification" but rather it's to disable verification and instead wait the specified numbers of seconds. This is useful for people like me that block access to cloudflare and google DNS.

See also: https://forum.netgate.com/topic/174720/acme-renewal-timeout-and-no-doh/4

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

pfSense » pfSense Packages

Custom queries

Bug #13495

ACME package's "DNS-Sleep" field's help text is incorrect

Updated by Jim Pingle over 1 year ago

Updated by Jim Pingle over 1 year ago

Updated by Danilo Zrenjanin over 1 year ago