Let’s Encrypt now available via EPEL


That’s right folks, the Let’s Encrypt client has just been committed to EPEL!

Now all you have to do on EL-based distros:

yum update
yum install letsencrypt
letsencrypt certonly -d foo.bar -d www.foo.bar

No more git clone, no more GCC, kernel headers, virtualenv and pip for letsencrypt-auto, it simply just works. The certs will be found under /etc/letsencrypt/live.

For the curious, this is the current list of dependencies it installs on a fresh minimal install of CentOS 7.1:

dialog pyOpenSSL python-backports python-backports-ssl_match_hostname python-cffi python-chardet python-cryptography python-enum34 python-ndg_httpsclient python-parsedatetime python-ply python-psutil python-pyasn1 python-pycparser python-requests python-setuptools python-six python-urllib3 python-werkzeug python-zope-component python-zope-event python-zope-interface python2-acme python2-configargparse python2-dialog python2-letsencrypt python2-mock python2-pyrfc3339 pytz

Note: to request certificates, you need to stop your HTTP server on port 80 and also let port 443 pass through your firewall.

Kudos to both the LE and EPEL guys!