How to Install and Uninstall lacme Package on Ubuntu 21.04 (Hirsute Hippo)
Last updated: May 15,2024
1. Install "lacme" package
Please follow the steps below to install lacme on Ubuntu 21.04 (Hirsute Hippo)
$
sudo apt update
Copied
$
sudo apt install
lacme
Copied
2. Uninstall "lacme" package
Please follow the guidance below to uninstall lacme on Ubuntu 21.04 (Hirsute Hippo):
$
sudo apt remove
lacme
Copied
$
sudo apt autoclean && sudo apt autoremove
Copied
3. Information about the lacme package on Ubuntu 21.04 (Hirsute Hippo)
Package: lacme
Architecture: all
Version: 0.8.0-1
Priority: optional
Section: universe/utils
Origin: Ubuntu
Maintainer: Ubuntu Developers
Original-Maintainer: Guilhem Moulin
Bugs: https://bugs.launchpad.net/ubuntu/+filebug
Installed-Size: 137
Depends: adduser, libconfig-tiny-perl, libjson-perl, libnet-ssleay-perl, libtimedate-perl, libwww-perl, openssl (>= 1.1.0~), perl:any
Recommends: lacme-accountd (>= 0.8.0), liblwp-protocol-https-perl
Filename: pool/universe/l/lacme/lacme_0.8.0-1_all.deb
Size: 42232
MD5sum: d223f8359d62a81657950e712a3180c2
SHA1: c2d6f0ebbf86883bd9a22761cca994e2e61b028c
SHA256: b468e24123e1f0f13ec520f005e719382e6e9cfe3a9b46fdb6548f553ab28696
SHA512: 82bef5a5e71b0b50b250c97aaa6268fd97107ba8f482bd40f5203a88cdbd4d8653478b219c33b747cca294fd4ceae779b565de0ccb89525d41602c8aebaa3b54
Homepage: https://git.guilhem.org/lacme/about/
Description-en: ACME client written with process isolation and minimal privileges in mind
lacme is divided into four components, each with its own executable:
.
* A process to manage the account key and issue SHA-256 signatures needed for
each ACME command. (This process binds to a UNIX-domain socket to reply to
signature requests from the ACME client.) One can use the UNIX-domain
socket forwarding facility of OpenSSH 6.7 and later to run this process on
a different host.
.
* A "master" process, which runs as root and is the only component
with access to the private key material of the server keys. It is used to
fork the ACME client (and optionally the ACME webserver) after dropping
root privileges. For certificate issuances, it also generates Certificate
Signing Requests, then verifies the validity of the issued certificate, and
optionally reloads or restarts services.
.
* An actual ACME client, which builds ACME commands and dialogues with
the remote ACME server. Since ACME commands need to be signed with the
account key, the "master" process passes the UNIX-domain socket of the
account key manager to the ACME client: data signatures are requested by
writing the data to be signed to the socket.
.
* For certificate issuances, an optional webserver, which is spawned
by the "master" process when no service is listening on the HTTP port.
(The only challenge type currently supported is "http-01", which requires a
webserver to answer challenges.) That webserver only processes GET and
HEAD requests under the "/.well-known/acme-challenge/" URI. By default
some iptables(8) rules are automatically installed to open the HTTP port,
and removed afterwards.
Description-md5: 17b092dc67a598023e7db924caa2c8a3
Architecture: all
Version: 0.8.0-1
Priority: optional
Section: universe/utils
Origin: Ubuntu
Maintainer: Ubuntu Developers
Original-Maintainer: Guilhem Moulin
Bugs: https://bugs.launchpad.net/ubuntu/+filebug
Installed-Size: 137
Depends: adduser, libconfig-tiny-perl, libjson-perl, libnet-ssleay-perl, libtimedate-perl, libwww-perl, openssl (>= 1.1.0~), perl:any
Recommends: lacme-accountd (>= 0.8.0), liblwp-protocol-https-perl
Filename: pool/universe/l/lacme/lacme_0.8.0-1_all.deb
Size: 42232
MD5sum: d223f8359d62a81657950e712a3180c2
SHA1: c2d6f0ebbf86883bd9a22761cca994e2e61b028c
SHA256: b468e24123e1f0f13ec520f005e719382e6e9cfe3a9b46fdb6548f553ab28696
SHA512: 82bef5a5e71b0b50b250c97aaa6268fd97107ba8f482bd40f5203a88cdbd4d8653478b219c33b747cca294fd4ceae779b565de0ccb89525d41602c8aebaa3b54
Homepage: https://git.guilhem.org/lacme/about/
Description-en: ACME client written with process isolation and minimal privileges in mind
lacme is divided into four components, each with its own executable:
.
* A process to manage the account key and issue SHA-256 signatures needed for
each ACME command. (This process binds to a UNIX-domain socket to reply to
signature requests from the ACME client.) One can use the UNIX-domain
socket forwarding facility of OpenSSH 6.7 and later to run this process on
a different host.
.
* A "master" process, which runs as root and is the only component
with access to the private key material of the server keys. It is used to
fork the ACME client (and optionally the ACME webserver) after dropping
root privileges. For certificate issuances, it also generates Certificate
Signing Requests, then verifies the validity of the issued certificate, and
optionally reloads or restarts services.
.
* An actual ACME client, which builds ACME commands and dialogues with
the remote ACME server. Since ACME commands need to be signed with the
account key, the "master" process passes the UNIX-domain socket of the
account key manager to the ACME client: data signatures are requested by
writing the data to be signed to the socket.
.
* For certificate issuances, an optional webserver, which is spawned
by the "master" process when no service is listening on the HTTP port.
(The only challenge type currently supported is "http-01", which requires a
webserver to answer challenges.) That webserver only processes GET and
HEAD requests under the "/.well-known/acme-challenge/" URI. By default
some iptables(8) rules are automatically installed to open the HTTP port,
and removed afterwards.
Description-md5: 17b092dc67a598023e7db924caa2c8a3
4. References on Ubuntu 21.04 (Hirsute Hippo)
5. The same packages on other Linux Distributions
Popular Linux Distros
Ubuntu
Arch
Linux Mint
Fedora
Kali Linux
Debian
openSuSE
CentOS
Oracle Linux
Rocky Linux
Manjaro
AlmaLinux
Amazon Linux
Red Hat Enterprise Linux