Acme.sh runs arbitrary commands from a remote server

This page summarizes the projects mentioned and recommended in the original post on news.ycombinator.com
ACME Letsencrypt acme-client Processes Security

Scout Monitoring - Free Django app performance insights with Scout Monitoring
Get Scout setup in minutes, and let us sweat the small stuff. A couple lines in settings.py is all you need to start monitoring your apps. Sign up for our free tier today.
www.scoutapm.com
featured
InfluxDB - Power Real-Time Data Analytics at Scale
Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
www.influxdata.com
featured

  • acme.sh

    A pure Unix shell script implementing ACME client protocol

    • Looks like they are issuing under a sub-CA of "ssl.com" according to https://github.com/acmesh-official/acme.sh/issues/4659#issue...

    Interestingly, the mozilla dev-security-policy group seems to contain a recent discussion about including "ssl.com" in the root store here https://groups.google.com/a/mozilla.org/g/dev-security-polic...

    Curious to know if this could, maybe it should, have ripple effects to the various SSL Root CA programs. Having someone run a subCA that actually exploits an RCE against ACME clients doesn't seem very trustworthy, and any CA enabling this behaviour should probably be kicked out of the trust stores?

  • sh

    Python process launching

    • I usually replace shell scripts with python (using sh module: https://amoffat.github.io/sh/ for calling other scripts/programs).

  • Scout Monitoring

    Free Django app performance insights with Scout Monitoring. Get Scout setup in minutes, and let us sweat the small stuff. A couple lines in settings.py is all you need to start monitoring your apps. Sign up for our free tier today.

    Scout Monitoring logo

  • lego

    Let's Encrypt/ACME client and library written in Go

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts

  • Where do you get/setup certificates from for your https/ssl?

    3 projects | /r/oraclecloud | 7 Jul 2023

  • LeGo CertHub v0.9.0 with Docker Support

    13 projects | /r/selfhosted | 13 May 2023

  • Dehydrated: Letsencrypt/acme client implemented as a shell-script

    11 projects | news.ycombinator.com | 19 Apr 2024

  • Why Certificate Lifecycle Automation Matters

    4 projects | news.ycombinator.com | 30 Jan 2024

  • I am once again asking that "web" and "fullstack" developers...

    1 project | /r/sysadmin | 30 Aug 2023