MxCkX Posted November 18, 2016 Share Posted November 18, 2016 Hello, Is it possible to disable the browser check mechanism for /.well-known/acme-challenge/* URLs? These addresses are used by the Let's Encrypt domain verification bot, which obviously would not solve the js/cookie challenge. To prevent potential abuse, the exemption could only be granted for static plaintext files under 200 bytes and/or rate-limited. Quote Link to comment Share on other sites More sharing options...
Administrator Posted November 18, 2016 Share Posted November 18, 2016 it might be possible to allow access to just LE's servers .. I'll add a card to trello to see if a dev can check it. Quote Link to comment Share on other sites More sharing options...
URCB Posted February 8, 2017 Share Posted February 8, 2017 Any update on this? Quote Link to comment Share on other sites More sharing options...
Anyx Posted August 13, 2018 Share Posted August 13, 2018 On 18/11/2016 at 9:59 AM, Administrator said: it might be possible to allow access to just LE's servers .. I'll add a card to trello to see if a dev can check it. @Administrator has this been forwarded? Do we have a new update? Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.