X-Git-Url: https://git.ralfj.de/lets-encrypt-tiny.git/blobdiff_plain/0c9aebd9cde72825b62e5e09a8a577d55abe1243..1b15f25eb3f15859f0e0c8f584dcd423fc24a11c:/letsencrypt-tiny.conf.sample

diff --git a/letsencrypt-tiny.conf.sample b/letsencrypt-tiny.conf.sample
index 4c28d17..178eead 100644
--- a/letsencrypt-tiny.conf.sample
+++ b/letsencrypt-tiny.conf.sample
@@ -11,7 +11,7 @@ key-length = 4096
 [timing]
 # After how many days should the private key be re-generated?
 max-key-age-days = 180
-# How many hours should a new private key be left in staging? (0 for no staging)
+# How many hours should a new private key be left in staging? Remove or set to 0 to enable immediate activation.
 staging-hours = 25
 # How many days before a certificate expires, should it be renewed?
 renew-cert-before-expiry-days = 15
@@ -24,9 +24,8 @@ post-certchange = /home/user/letsencrypt/cert-hook
 # Example usage: Updating TLSA records (with the selector being SubjectPublicKeyInfo) in the zone
 post-keychange = /home/user/letsencrypt/key-hook
 
-# Parameters for acme-tiny <https://github.com/diafygi/acme-tiny/>
+# Parameters for the embedded acme-tiny <https://github.com/diafygi/acme-tiny/>
 [acme]
-acme-tiny = /home/user/letsencrypt/acme-tiny/
 account-key = /etc/ssl/private/letsencrypt/account.key
 challenge-dir = /srv/acme-challenge/
 
@@ -34,11 +33,10 @@ challenge-dir = /srv/acme-challenge/
 [dirs]
 certs = /etc/ssl/mycerts/letsencrypt
 keys = /etc/ssl/private/letsencrypt
-csrs = /etc/ssl/private/letsencrypt
 backups = /etc/ssl/old/letsencrypt
 
 [files]
-# Base name of the live key and certificate
+# Base name of the live key and certificate.
 live = live
-# Base name of the staging key and certificate (optional)
+# Base name of the staging key and certificate. Used during generation of a new key, to avoid trouble if something fails there.
 staging = staging