Open Menu
AllLocalCommunitiesAbout
lotide
AllLocalCommunitiesAbout
Login

Should Caddy and Traefik Replace Certbot?

⁨60⁩ ⁨likes⁩

Submitted ⁨⁨8⁩ ⁨months⁩ ago⁩ by ⁨leo@lemmy.linuxuserspace.show⁩ to ⁨technology@beehaw.org⁩

https://www.eff.org/deeplinks/2024/03/should-caddy-and-traefik-replace-certbot

source

Comments

Sort:hotnewtop
  • rimu@piefed.social ⁨8⁩ ⁨months⁩ ago

    They both implement the ACME protocol internally, allowing them to integrate with services like Let’s Encrypt to automate regularly obtaining the certificates needed to offer HTTPS.

    I did not realise this. Very nice, I'll be trying Caddy on my next server!

    source
    • elvith@feddit.de ⁨8⁩ ⁨months⁩ ago

      My newest vps runs with Caddy. Works like a charm. The downside was, that I didn’t think of the automatic certificate deployment when I set everything up and it wouldn’t come up a first when I only wanted to connect locally to it, as it tried to get a certificate but the challenge failed because I hadn’t the firewall open yet. But besides that it was very smooth so far.

      source
    • Kangie@lemmy.srcfiles.zip ⁨8⁩ ⁨months⁩ ago

      I use Traefik for all of my containerised services. It’s fantastic.

      source
  • iiGxC@slrpnk.net ⁨8⁩ ⁨months⁩ ago

    I’ve had pretty good experience with caddy, although some key aspects of documentation I found hard to find - namely, how to use it with docker compose and a custom build with other plugins like dns challenge and dynamic dns

    source
    • gullmar@feddit.it ⁨8⁩ ⁨months⁩ ago

      Personally, I followed the instructions to install Caddy with Docker Compose in the Nextcloud AIO reverse proxy documentation. Regarding building custom images, there are the instructions to build a custom Caddy image in a Dockerfile in the Docker Hub page.

      source
      • iiGxC@slrpnk.net ⁨8⁩ ⁨months⁩ ago

        Yep, I think that’s what I found too. I set it up to use nextcloud aio as well, it just took me a while to find that docker page

        source
    • nis@feddit.dk ⁨8⁩ ⁨months⁩ ago

      So… Did you find documentation about how to do that?

      source
      • iiGxC@slrpnk.net ⁨8⁩ ⁨months⁩ ago

        Yes, but it was piece by piece as I went

        source
    • jherazob@beehaw.org ⁨8⁩ ⁨months⁩ ago

      I use this, it’s very much not perfect but works: github.com/lucaslorentz/caddy-docker-proxy

      source
  • palarith@aussie.zone ⁨8⁩ ⁨months⁩ ago

    I use cerbot, but not trusting enough to let it touch any conf files

    source
    • Rekhyt@beehaw.org ⁨8⁩ ⁨months⁩ ago

      Yeah, it just replaces the cert files and reload/restarts nginx for me. I don’t want it anywhere near my config files.

      source
  • jarfil@beehaw.org ⁨8⁩ ⁨months⁩ ago

    Isn’t Certbot like the “reference implementation” though?

    I’ve been using Traefik for several years now, but I think having a tool that allows troubleshooting the process step by step is also valuable.

    source