From 658419dae30bf8a997a7b6612b1e113b30852705 Mon Sep 17 00:00:00 2001
From: rsiddharth <s@ricketyspace.net>
Date: Sat, 25 Apr 2020 14:20:38 -0400
Subject: acmens.py: Update sign_csr.

* acmens.py (sign_csr): Process just one domain.
* README.md: Update 'getting/renewing a certificate' section.
---
 README.md | 10 ++++------
 1 file changed, 4 insertions(+), 6 deletions(-)

(limited to 'README.md')

diff --git a/README.md b/README.md
index edb1f10..5bf0d64 100644
--- a/README.md
+++ b/README.md
@@ -32,13 +32,11 @@ This is the key that you will get signed for free for your domain (replace
 and CSR for your domain, you can skip this step.
 
 ```sh
-#Create a CSR for example.com
-openssl genrsa -aes256 4096 > domain.key
-openssl req -new -sha256 -key domain.key -subj "/CN=example.com" > domain.csr
+# Generate domain key.
+openssl genrsa -aes256 -out domain.key 4096
 
-#Alternatively, if you want both example.com and www.example.com
-openssl genrsa -aes256 4096 > domain.key
-openssl req -new -sha256 -key domain.key -subj "/" -reqexts SAN -config <(cat /etc/ssl/openssl.cnf <(printf "[SAN]\nsubjectAltName=DNS:example.com,DNS:www.example.com")) > domain.csr
+# Generate CSR
+openssl req -new -sha256 -key domain.key -out domain.csr
 ```
 
 Third, you run the script using python and passing in the path to your user
-- 
cgit v1.2.3