> Looks like you're using LetsEncrypt, which is a good choice, but since > the certs are short and the process should be automated and should work, > I always monitor when I use LetsEncrypt. I've had two occasions where One day LetsEncrypt is going to auto-update a backdoor onto a gazillion hosts. - Ethan