acme.sh

A pure Unix shell script implementing ACME client protocol (by acmesh-official)

Acme.sh Alternatives

Similar projects and alternatives to acme.sh

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a better acme.sh alternative or higher similarity.

acme.sh discussion

Log in or Post with

acme.sh reviews and mentions

Posts with mentions or reviews of acme.sh. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2024-12-06.
  • The Biggest Shell Programs in the World (Wiki)
    12 projects | news.ycombinator.com | 6 Dec 2024
    It’s “only” 7.1K LoC, but my favorite is the “acme.sh” script which is used to issue and renew certs from Lets Encrypt.

    https://github.com/acmesh-official/acme.sh/blob/master/acme....

  • Let's Encrypt is 10 years old now
    4 projects | news.ycombinator.com | 20 Nov 2024
    > certbot is a python program, better hope it keeps working- it’s definitely not kept working for me and I’m a seasoned sysadmin. a combination of my python environment becoming outdated (making updates impossible) and a deprecation of a critical API needed for it to work.

    You could try out acme.sh that's written purely in shell. It's extremely capable and supports DNS challenge and multiple providers

    https://github.com/acmesh-official/acme.sh

  • Just want simple TLS for your .internal network?
    8 projects | news.ycombinator.com | 17 Oct 2024
    I use Dynu.com as my DNS provider (they're cheap, provide APIs and very fast to update which is great for home IP addresses that may change). Then, to get the certificates, I use https://github.com/acmesh-official/acme.sh which is a shell script. Copying the certificates to the relevant machines is done by a BASH script that runs the relevant acme.sh commands.
  • Intent to End OCSP Service
    1 project | news.ycombinator.com | 23 Jul 2024
  • Setting up a www subdomain on a self-hosted Ghost blog
    2 projects | dev.to | 22 May 2024
    server { listen 80; listen [::]:80; server_name www.myblog.lol; root /var/www/ghost/system/nginx-root; # Used for acme.sh SSL verification (https://acme.sh) location / { return 301 https://myblog.lol$request_uri; } location ~ /.well-known { allow all; } client_max_body_size 50m; }
  • Setting up a Homelab: Part 1 Proxmox and LetsEncrypt
    1 project | dev.to | 26 Apr 2024
    A self-signed certificate was generated and used by Proxmox which will always generate a warning on the browser. I did not like seeing this when trying to work on my home lab. So, I started looking for ways to put a valid SSL certificate in Proxmox. During my research, I found that Proxmox could be made to integrate with acme.sh; a free SSL certificate generator powered by ACME(Let's Encrypt).
  • How to Build Email Server with Exim on Alma Linux 9
    1 project | dev.to | 20 Apr 2024
    Next, we will install acme.sh, a command-line tool for managing SSL/TLS certificates. I prefer acme.sh over certbot, as it does not depend on the OS version. For more details about acme.sh, check its GitHub repo here.
  • Dehydrated: Letsencrypt/acme client implemented as a shell-script
    11 projects | news.ycombinator.com | 19 Apr 2024
    A very relevant question. Acme.sh, a similar shell script ACME client, had a remote code execution problem last year.

    https://github.com/acmesh-official/acme.sh/issues/4668

  • Ask HN: What is your experience with ZeroSSL?
    1 project | news.ycombinator.com | 20 Mar 2024
    As a result, any certificates issued (or renewed) after Feb 8th will not work on older Android devices (< 7.1.1), unless the ACME client has been configure to request an alternate certificate chain. The "alternate chain" workaround will also stop working on June 6th.

    I need to support these older Android devices so I am looking for alternatives. I have seen ZeroSSL mentioned a few times; it is also the default CA for acme.sh (the ACME client I am using nowadays) [2]. They have a number of paid plans but ACME certificates are free [3].

    I'll be testing this over the next few days, but I would also like to ask if people here have experience with ZeroSSL (good or bad :-). Any feedback would be helpful.

    [1]: https://letsencrypt.org/2023/07/10/cross-sign-expiration.html

    [2]: https://github.com/acmesh-official/acme.sh

    [3]: https://zerossl.com/documentation/acme/

  • Why Certificate Lifecycle Automation Matters
    4 projects | news.ycombinator.com | 30 Jan 2024
    Huh, the environment variable thing was specifically aimed at acme.sh which rather arbitrarily changed the config value from ACMEDNS_UPDATE_URL to ACMEDNS_BASE_URL, never acknowledged this in a changelog and then silently failed after an automatic upgrade as recommended by the default install:

    https://github.com/acmesh-official/acme.sh/commit/2ce145f359...

    It's also cleared out my .account.conf files when run on the suggested cron.

    I've started using updown which also monitors my TLS certs simply because I no longer trust the process to work as documented.

  • A note from our sponsor - SaaSHub
    www.saashub.com | 10 Dec 2024
    SaaSHub helps you find the best software and product alternatives Learn more →

Stats

Basic acme.sh repo stats
285
39,925
9.3
12 days ago

Sponsored
CodeRabbit: AI Code Reviews for Developers
Revolutionize your code reviews with AI. CodeRabbit offers PR summaries, code walkthroughs, 1-click suggestions, and AST-based analysis. Boost productivity and code quality across all major languages with each PR.
coderabbit.ai

Did you konow that Shell is
the 10th most popular programming language
based on number of metions?