Cloudflare is not the only DNS provider supported for DNS-01 challenges, even if you restrict yourself to only using Certbot: https://community.letsencrypt.org/t/dns-providers-who-easily...
replyPerhaps I'm missing something but what's special about Cloudflare here?
replyYou can use a boatload of providers for automated DNS-01.
There's a relatively short list supported by certbot out of the box.
replyOne tool that can be used in a deployment hook which supports the API of several dozen DNS providers:
replyThe list of API integrations provided by the lego project looks quite impressive. https://go-acme.github.io/lego/dns/index.html
replyI have not used Cloudflare for ages, but remember the Cloudflare API key couldn't be restricted to just one domain, so if someone could get hold of the key, they could have gotten access to all your domains. So that made me not use them. Has anything changed?
replyYes, API keys can now be linked to zones or domains.
reply