There is no way to disable the debug logging and that log is completely useless unless things go South. And when they do, you can run certbot with --debug option to see what went wrong. I saw some people wasting their time trying to convince the developers to fix this issue.
I didn't feel like forking the project just to disable automatic debug logging, so here is a workaround using logrotate (Debian 11, certbot 1.12.0, logrotate 3.18.0):
Code: Select all
sed -i 's/rotate 12/rotate 0/' /etc/logrotate.d/certbot
sed -i 's/weekly/daily/' /etc/logrotate.d/certbot
sed -i 's/compress/notifempty/' /etc/logrotate.d/certbot
Another possible solution I did not try would have been to copy /dev/null over the log
Code: Select all
cp -a /dev/null /var/log/letsencrypt/letsencrypt.log
Code: Select all
ln -s /dev/null /var/log/letsencrypt/letsencrypt.log
Happy hacking,
Santeri