generate a new private key for each csr if the user wishes so
letsencrypt client implemented as a shell-script