handle Let's Encrypt removing OCSP support

We can no longer use OCSP stapling and Must-Staple. These will soon be obsolete once the `shortlived` profile is available for public use since it will provide certificates with a similar lifetime as OCSP responses. In the meantime, we've moved to the `tlsserver` profile stripping legacy features to prepare for the `shortlived` profile which will be identical to `tlsserver` but with a validity period of 6 days.
2025-05-04 21:57:41 -04:00
parent c57490de09
commit 298c357bc9
3 changed files with 0 additions and 7 deletions
--- a/1
+++ b/1
@@ -11,7 +11,6 @@ for replica in ${replicas[@]}; do
    echo

    rsync -rpcvl --delete --fsync --preallocate /etc/letsencrypt/ $replica:/etc/letsencrypt &&
-        rsync -rpcvl --delete --fsync --preallocate /var/cache/certbot-ocsp-fetcher/ $replica:/var/cache/certbot-ocsp-fetcher &&
        ssh root@$replica nginx -s reload ||
        status=1
 done