See How to update below, additional recommended step for this release, if you don't do it, it should be no problem, but I recommend it to use ocsp the securest way
Changes
- dep updates
- remove useless built-in exploit protection
- Re-enable must-stable and implement certbot-ocsp-fetcher, ocsp should now work much better (NOTE: lets encrypt wants to remove ocsp support, because of this NPMplus may change its default CA to zerossl in the future)
- default username now uses "example.org" instead of "example.com"
- remove requirement of chain.pem
- revoke certs before force renewing them
- move ip ranges file to /tmp (inside the container), instead of /data/nginx
- improve file deletion
- improve error debugging (show nginx -t error in docker logs and keep conf.err file to see not working config file)
- switch from mysql to mysql2 (still no support from me)
- remove warnings shown in log when using dummycerts
- add liboqs/oqs-provider
- increase server_names_hash_bucket_size
- more fixes and improvements
How to update
- Read the changes above
- Pull the zoeyvid/npmplus:latest image
- apply possible changes that maybe effect you from above to your compose.yaml/NPMplus
- redeploy the compose stack
- RECOMMENDED: manually (sorry) regenerate all your hosts (edit (change nothing) ⇾ save). Why? To configure ocsp the securest way.
Full Changelog: 2024-08-15-r1...2024-10-02-r1