Simple Hurricane Electric DNS Authenticator plugin for Certbot

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for gir from gravatar.com gir

Unverified details

These details have not been verified by PyPI
Project links
Meta
Report project as malware

Project description

The simple dns.he.net certbot plugin

This certbot plugin allows you to validate ACME challenges against dns.he.net. Unlike earlier plugins, this does not require access to your username/password, but only to the DDNS key for the record(s) to validate. This follows the principle of least privilege and prevents unwanted modifications to your zone.

Usage

Manually create a _acme-challenge TXT record and set a DDNS key.

  1. log in at https://dns.he.net and navigate to the zone in question
  2. create a new TXT record for each (sub)domain to validate:
    • Name: e.g. _acme-challenge.subdomain.example.com
    • Text: (empty; doesn't matter)
    • TTL: 5 minutes
    • check Enable entry for dynamic dns
  3. click the circling arrows to generate a DDNS key for each of the added records. if you want a single certificate with multiple domain names, you must use the same key for all these records. You can use pwgen -s 64 to generate good random tokens.

Then invoke certbot with --authenticator dns-he-simple --dns-he-simple-key $your_ddns_key. You can also add the following to /etc/letsencrypt/cli.ini instead:

authenticator=dns-he-simple
dns-he-simple-key=$your_ddns_key

Copyright

Copyright (c) 2025, Tobias Girstmair tobi@isticktoit.net. permissively licensed.

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for gir from gravatar.com gir

Unverified details

These details have not been verified by PyPI
Project links
Meta

Release history Release notifications | RSS feed

This version

1.0.0

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

certbot_dns_he_simple-1.0.0.tar.gz (3.2 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

certbot_dns_he_simple-1.0.0-py3-none-any.whl (3.9 kB view details)

Uploaded Python 3

File details

Details for the file certbot_dns_he_simple-1.0.0.tar.gz.

File metadata

  • Download URL: certbot_dns_he_simple-1.0.0.tar.gz
  • Upload date:
  • Size: 3.2 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/6.1.0 CPython/3.12.9

File hashes

Hashes for certbot_dns_he_simple-1.0.0.tar.gz
Algorithm Hash digest
SHA256 8e946845c5c6c60a04253d2efca2d863928f99ee7a96252fcf6494893a7ca6df
MD5 e01e1ae4c49fef321911c901656558fb
BLAKE2b-256 0e649fa7039f5172eff97396817c509b0a2e5fed6c4c0ebfd5374a52a6b989fa

See more details on using hashes here.

File details

Details for the file certbot_dns_he_simple-1.0.0-py3-none-any.whl.

File metadata

File hashes

Hashes for certbot_dns_he_simple-1.0.0-py3-none-any.whl
Algorithm Hash digest
SHA256 8b10e543b8ad213dba6967be6bdf718b01b03b757cefe9784db189719f7b34ed
MD5 84647eef8afa370d0ff386d5e826c3c5
BLAKE2b-256 b781f0f11fd1da62824b3b2f0ed4e89c4414bcadc0c6d9395b0c7f64449650a5

See more details on using hashes here.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page