<html><head><meta http-equiv="Content-Type" content="text/html charset=windows-1252"></head><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space;" class=""><br class=""><div><blockquote type="cite" class=""><div class="">On 23 Nov 2015, at 15:50, Daniel-Constantin Mierla <<a href="mailto:miconda@gmail.com" class="">miconda@gmail.com</a>> wrote:</div><br class="Apple-interchange-newline"><div class="">
<meta content="text/html; charset=windows-1252" http-equiv="Content-Type" class="">
<div bgcolor="#FFFFFF" text="#000000" class="">
Hello,<br class="">
<br class="">
iirc, there is a rpc command to reload tls.cfg -- inside this file
are the paths to certificate and I assume the certs are reloaded as
well.<br class=""></div></div></blockquote>Right. I forgot about that file. That’s excellent. We just have to point users to the external config.<br class=""><blockquote type="cite" class=""><div class=""><div bgcolor="#FFFFFF" text="#000000" class="">
<br class="">
I haven't looked at letsencrypt scripts to see how some triggers can
be hooked there. Waiting to get out to the public and then I will
try to find some time for checking what letsencrypt provides.<br class=""></div></div></blockquote>Great!</div><div><br class=""></div><div>/O<br class=""><blockquote type="cite" class=""><div class=""><div bgcolor="#FFFFFF" text="#000000" class="">
<br class="">
Cheers,<br class="">
Daniel<br class="">
<br class="">
<div class="moz-cite-prefix">On 23/11/15 15:41, Olle E. Johansson
wrote:<br class="">
</div>
<blockquote cite="mid:669CB808-46B0-4F72-BE86-1C731EF20AD1@edvina.net" type="cite" class="">
<pre wrap="" class="">Hi!
<a href="http://Letsencrypt.org" class="">Letsencrypt.org</a> is now in beta and offer free TLS certificates with a 3 month life time.
Certificates will be updated in the background. I haven’t looked into all scripts but I guess that there’s a script that renews the certificate and somehow tells the application to reload the certs.
We need to be able to reload certs in runtime, not by stopping and restarting Kamailio. Possibly either with a user signal or an RPC command reachable through kamcmd/kamctl.
Anyone else that has looked into how the cron scripts communicates with the server process?
/O</pre>
<br class="">
<fieldset class="mimeAttachmentHeader"></fieldset>
<br class="">
<pre wrap="" class="">_______________________________________________
sr-dev mailing list
<a class="moz-txt-link-abbreviated" href="mailto:sr-dev@lists.sip-router.org">sr-dev@lists.sip-router.org</a>
<a class="moz-txt-link-freetext" href="http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-dev">http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-dev</a>
</pre>
</blockquote>
<br class="">
<pre class="moz-signature" cols="72">--
Daniel-Constantin Mierla
<a class="moz-txt-link-freetext" href="http://twitter.com/#!/miconda">http://twitter.com/#!/miconda</a> - <a class="moz-txt-link-freetext" href="http://www.linkedin.com/in/miconda">http://www.linkedin.com/in/miconda</a>
Book: SIP Routing With Kamailio - <a class="moz-txt-link-freetext" href="http://www.asipto.com/">http://www.asipto.com</a>
Kamailio Advanced Training, Nov 30-Dec 2, Berlin - <a class="moz-txt-link-freetext" href="http://asipto.com/kat">http://asipto.com/kat</a></pre>
</div>
_______________________________________________<br class="">sr-dev mailing list<br class=""><a href="mailto:sr-dev@lists.sip-router.org" class="">sr-dev@lists.sip-router.org</a><br class="">http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-dev<br class=""></div></blockquote></div><br class=""></body></html>