Is there a best practice to configure obtaining Let’s Encrypt certificates using DNS challenge with adam:ONE?
With the latest article regarding TXT records and the security issues surrounding them, I’m curious.
The TXT used by the ACME protocol when using DNS verification, is accessed by the issuer and not from your LAN, so the Resource Record Filter feature would have no affect on ACME or Let’s Encrypt.
There isn’t really anything non-standard for a best practice to exist regarding obtaining Let’s Encrypt, you’d do it just like you would anywhere else.