Dehydrated setup
@lbutlr
kremels at kreme.com
Tue Nov 8 13:59:11 UTC 2016
> On 08 Nov 2016, at 06:42, Dirk Engling <erdgeist at erdgeist.org> wrote:
>
> On 08/11/2016 13:48, Lewis Butler wrote:
>
>> the http error log just shows the file that is trying to be accessed is not there:
>>
>> [client 66.133.109.36:50250] AH00128: File does not exist: /usr/local/www/.well-known/acme-challenge/bXxlfu…
>>
>> Certs are being created in /usr/local/etc/dehydrated/certs each time I try to run the script.
>
> What does your /usr/local/etc/dehydrated/config say about the WELLKNOWN
> variable? Shouldn't that point to /usr/local/www/dehydrated?
I thought it was supposed to point to the webroot. Will try setting it to dehydrated.
WELLKNOWN="/usr/local/www/.well-known/“
changed to
WELLKNOWN="/usr/local/etc/dehydrated"
# su -m _dehydrated -c 'bash /usr/local/bin/dehydrated --cron'
# INFO: Using main config file /usr/local/etc/dehydrated/config
Processing covisp.net with alternative names: covisp.net www.covisp.net
+ Signing domains...
+ Generating private key...
+ Generating signing request...
+ Requesting challenge for covisp.net...
+ Requesting challenge for covisp.net...
+ Requesting challenge for www.covisp.net...
+ Responding to challenge for covisp.net...
ERROR: Challenge is invalid! (returned: invalid) (result: {
"type": "http-01",
"status": "invalid",
"error": {
"type": "urn:acme:error:unauthorized",
"detail": "Invalid response from http://covisp.net/.well-known/acme-challenge/t4DhXZyC
same results with WELLKNOWN="/usr/local/etc/dehydrated/.well-known"
/usr/local/etc/dehydrated]# ls -lsR
total 40
8 drwxrwx--- 2 root _dehydrated 512 Nov 8 04:34 .acme-challenges
0 lrwxr-xr-x 1 root _dehydrated 16 Nov 8 06:48 .well-known -> /www/.well-known
8 drwxrwx--- 3 root _dehydrated 512 Nov 8 06:45 accounts
8 drwxrwx--- 3 root _dehydrated 512 Oct 31 17:38 certs
8 -rw-r--r-- 1 root _dehydrated 141 Nov 8 06:56 config
8 -rw-r--r-- 1 root _dehydrated 129 Nov 8 06:54 domains.txt
./.acme-challenges:
total 0
./accounts:
total 8
8 drwx------ 2 _dehydrated _dehydrated 512 Nov 8 06:45 aHR0cHM6Ly9hY21lLXYwMS5hcGkubGV0c2VuY3J5cHQub3JnL2RpcmVjdG9yeQo
./accounts/aHR0cHM6Ly9hY21lLXYwMS5hcGkubGV0c2VuY3J5cHQub3JnL2RpcmVjdG9yeQo:
total 16
8 -rw------- 1 _dehydrated _dehydrated 3243 Nov 8 06:45 account_key.pem
8 -rw------- 1 _dehydrated _dehydrated 960 Nov 8 06:45 registration_info.json
./certs:
total 8
8 drwxrwx--- 2 root _dehydrated 1536 Nov 8 06:56 covisp.net
./certs/covisp.net:
total 256
8 -rw------- 1 _dehydrated _dehydrated 1728 Nov 8 04:44 cert-1478605489.csr
0 -rw------- 1 _dehydrated _dehydrated 0 Nov 8 04:44 cert-1478605489.pem
8 -rw------- 1 _dehydrated _dehydrated 1728 Nov 8 05:13 cert-1478607211.csr
0 -rw------- 1 _dehydrated _dehydrated 0 Nov 8 05:13 cert-1478607211.pem
8 -rw------- 1 _dehydrated _dehydrated 1728 Nov 8 05:15 cert-1478607331.csr
0 -rw------- 1 _dehydrated _dehydrated 0 Nov 8 05:15 cert-1478607331.pem
8 -rw------- 1 _dehydrated _dehydrated 1728 Nov 8 05:17 cert-1478607471.csr
0 -rw------- 1 _dehydrated _dehydrated 0 Nov 8 05:17 cert-1478607471.pem
8 -rw------- 1 _dehydrated _dehydrated 1728 Nov 8 05:21 cert-1478607699.csr
0 -rw------- 1 _dehydrated _dehydrated 0 Nov 8 05:21 cert-1478607699.pem
8 -rw------- 1 _dehydrated _dehydrated 1728 Nov 8 05:35 cert-1478608499.csr
0 -rw------- 1 _dehydrated _dehydrated 0 Nov 8 05:35 cert-1478608499.pem
8 -rw------- 1 _dehydrated _dehydrated 1728 Nov 8 05:37 cert-1478608627.csr
0 -rw------- 1 _dehydrated _dehydrated 0 Nov 8 05:37 cert-1478608627.pem
8 -rw------- 1 _dehydrated _dehydrated 1728 Nov 8 05:39 cert-1478608727.csr
0 -rw------- 1 _dehydrated _dehydrated 0 Nov 8 05:39 cert-1478608727.pem
8 -rw------- 1 _dehydrated _dehydrated 1728 Nov 8 05:40 cert-1478608812.csr
0 -rw------- 1 _dehydrated _dehydrated 0 Nov 8 05:40 cert-1478608812.pem
8 -rw------- 1 _dehydrated _dehydrated 1728 Nov 8 06:45 cert-1478612746.csr
0 -rw------- 1 _dehydrated _dehydrated 0 Nov 8 06:45 cert-1478612746.pem
8 -rw------- 1 _dehydrated _dehydrated 1728 Nov 8 06:49 cert-1478612933.csr
0 -rw------- 1 _dehydrated _dehydrated 0 Nov 8 06:49 cert-1478612933.pem
8 -rw------- 1 _dehydrated _dehydrated 1756 Nov 8 06:51 cert-1478613091.csr
0 -rw------- 1 _dehydrated _dehydrated 0 Nov 8 06:51 cert-1478613091.pem
8 -rw------- 1 _dehydrated _dehydrated 1756 Nov 8 06:53 cert-1478613186.csr
0 -rw------- 1 _dehydrated _dehydrated 0 Nov 8 06:53 cert-1478613186.pem
8 -rw------- 1 _dehydrated _dehydrated 1679 Nov 8 06:54 cert-1478613262.csr
0 -rw------- 1 _dehydrated _dehydrated 0 Nov 8 06:54 cert-1478613262.pem
8 -rw------- 1 _dehydrated _dehydrated 1679 Nov 8 06:55 cert-1478613335.csr
0 -rw------- 1 _dehydrated _dehydrated 0 Nov 8 06:55 cert-1478613335.pem
8 -rw------- 1 _dehydrated _dehydrated 1679 Nov 8 06:56 cert-1478613402.csr
0 -rw------- 1 _dehydrated _dehydrated 0 Nov 8 06:56 cert-1478613402.pem
8 -rw------- 1 _dehydrated _dehydrated 3247 Nov 8 04:44 privkey-1478605489.pem
8 -rw------- 1 _dehydrated _dehydrated 3243 Nov 8 05:13 privkey-1478607211.pem
8 -rw------- 1 _dehydrated _dehydrated 3243 Nov 8 05:15 privkey-1478607331.pem
8 -rw------- 1 _dehydrated _dehydrated 3243 Nov 8 05:17 privkey-1478607471.pem
8 -rw------- 1 _dehydrated _dehydrated 3243 Nov 8 05:21 privkey-1478607699.pem
8 -rw------- 1 _dehydrated _dehydrated 3243 Nov 8 05:35 privkey-1478608499.pem
8 -rw------- 1 _dehydrated _dehydrated 3243 Nov 8 05:37 privkey-1478608627.pem
8 -rw------- 1 _dehydrated _dehydrated 3243 Nov 8 05:39 privkey-1478608727.pem
8 -rw------- 1 _dehydrated _dehydrated 3247 Nov 8 05:40 privkey-1478608812.pem
8 -rw------- 1 _dehydrated _dehydrated 3243 Nov 8 06:45 privkey-1478612746.pem
8 -rw------- 1 _dehydrated _dehydrated 3247 Nov 8 06:49 privkey-1478612933.pem
8 -rw------- 1 _dehydrated _dehydrated 3243 Nov 8 06:51 privkey-1478613091.pem
8 -rw------- 1 _dehydrated _dehydrated 3243 Nov 8 06:53 privkey-1478613186.pem
8 -rw------- 1 _dehydrated _dehydrated 3243 Nov 8 06:54 privkey-1478613262.pem
8 -rw------- 1 _dehydrated _dehydrated 3243 Nov 8 06:55 privkey-1478613335.pem
8 -rw------- 1 _dehydrated _dehydrated 3243 Nov 8 06:56 privkey-1478613402.pem
More information about the freebsd-ports
mailing list