X-Git-Url: https://git.ralfj.de/lets-encrypt-tiny.git/blobdiff_plain/6a5c5964604124bfc0d5caf625c837c94c5fd123..5769bd1d33f8301d20c2267bceb70ffe9040206a:/letsencrypt-tiny.conf.sample

diff --git a/letsencrypt-tiny.conf.sample b/letsencrypt-tiny.conf.sample
index 55c4f0f..c8c91bc 100644
--- a/letsencrypt-tiny.conf.sample
+++ b/letsencrypt-tiny.conf.sample
@@ -8,21 +8,17 @@ domains =
 # The length of secret RSA keys
 key-length = 4096
 
-# File containing the DH parameters, as generated by openssl (optional)
-dh-params = /etc/ssl/dh2048.pem
-chain = /etc/ssl/chains/letsencrypt-x1.crt
-
 [timing]
 # After how many days should the private key be re-generated?
 max-key-age-days = 180
-# How many hours should a new private key be left in staging? (0 for no staging)
+# How many hours should a new private key be left in staging? (Must be set iff 'staging' is set in [files].)
 staging-hours = 25
 # How many days before a certificate expires, should it be renewed?
 renew-cert-before-expiry-days = 15
 
 [hooks]
 # Called after a new certificate has been obtained.
-# Example usage: Reloading services.
+# Example usage: Reloading services, generating combined "certificate + key chain" file.
 post-certchange = /home/user/letsencrypt/cert-hook
 # Called after a new certificate has been obtained, *if* there also were changes in the private keys
 # Example usage: Updating TLSA records (with the selector being SubjectPublicKeyInfo) in the zone