Package: certbot Version: 0.8.1-2 Severity: normal Dear Maintainer,
certbot installs a cronjob for automatic renewal without any information for the administrator. While this is a nice idea to make renewing certificates with letsencrypt easy, it is totally unexpected behaviour and can cause confusion if another process to manage the renewal is used by the administrator. I suggest: - there should be a /etc/default/certbot configuration file with a parameter to disable automatic renewal. Maybe make it configurable via AUTO_RENEW="all" # (all or list the domains to auto renew here - The admin needs to be informed. Some good option would be to use debconf to present a dialog on installation "enable auto renewal (recommended)". wkr, Alexander Schier -- System Information: Debian Release: 8.5 APT prefers stable APT policy: (900, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 4.3.0-0.bpo.1-amd64 (SMP w/8 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: sysvinit (via /sbin/init) Versions of packages certbot depends on: ii dialog 1.2-20140911-1 ii python-certbot 0.8.1-2 pn python:any <none> certbot recommends no packages. Versions of packages certbot suggests: pn python-certbot-apache <none> pn python-certbot-doc <none> -- Configuration Files: /etc/cron.d/certbot changed: SHELL=/bin/sh PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin -- no debconf information