Skip site navigation (1)Skip section navigation (2)
Date:      Tue, 8 Nov 2016 06:59:08 -0700
From:      "@lbutlr" <kremels@kreme.com>
To:        freebsd-ports@freebsd.org
Cc:        Dirk Engling <erdgeist@erdgeist.org>
Subject:   Re: Dehydrated setup
Message-ID:  <C3108A51-6680-4F15-973F-8CA82F4C775B@kreme.com>
In-Reply-To: <68409904-4868-5210-6c76-f123ca849996@erdgeist.org>
References:  <FECFF380-14AD-4692-AC42-2483238C4520@gmail.com> <68409904-4868-5210-6c76-f123ca849996@erdgeist.org>

next in thread | previous in thread | raw e-mail | index | archive | help

> On 08 Nov 2016, at 06:42, Dirk Engling <erdgeist@erdgeist.org> wrote:
>=20
> On 08/11/2016 13:48, Lewis Butler wrote:
>=20
>> the http error log just shows the file that is trying to be accessed =
is not there:
>>=20
>> [client 66.133.109.36:50250] AH00128: File does not exist: =
/usr/local/www/.well-known/acme-challenge/bXxlfu=E2=80=A6=20
>>=20
>> Certs are being created in /usr/local/etc/dehydrated/certs each time =
I try to run the script.
>=20
> What does your /usr/local/etc/dehydrated/config say about the =
WELLKNOWN
> variable? Shouldn't that point to /usr/local/www/dehydrated?

I thought it was supposed to point to the webroot. Will try setting it =
to dehydrated.

WELLKNOWN=3D"/usr/local/www/.well-known/=E2=80=9C

changed to

WELLKNOWN=3D"/usr/local/etc/dehydrated"

# su -m _dehydrated -c 'bash /usr/local/bin/dehydrated --cron'
# INFO: Using main config file /usr/local/etc/dehydrated/config
Processing covisp.net with alternative names: covisp.net www.covisp.net
 + Signing domains...
 + Generating private key...
 + Generating signing request...
 + Requesting challenge for covisp.net...
 + Requesting challenge for covisp.net...
 + Requesting challenge for www.covisp.net...
 + Responding to challenge for covisp.net...
ERROR: Challenge is invalid! (returned: invalid) (result: {
  "type": "http-01",
  "status": "invalid",
  "error": {
    "type": "urn:acme:error:unauthorized",
    "detail": "Invalid response from =
http://covisp.net/.well-known/acme-challenge/t4DhXZyC

same results with WELLKNOWN=3D"/usr/local/etc/dehydrated/.well-known"

/usr/local/etc/dehydrated]# ls -lsR
total 40
8 drwxrwx---  2 root  _dehydrated  512 Nov  8 04:34 .acme-challenges
0 lrwxr-xr-x  1 root  _dehydrated   16 Nov  8 06:48 .well-known -> =
/www/.well-known
8 drwxrwx---  3 root  _dehydrated  512 Nov  8 06:45 accounts
8 drwxrwx---  3 root  _dehydrated  512 Oct 31 17:38 certs
8 -rw-r--r--  1 root  _dehydrated  141 Nov  8 06:56 config
8 -rw-r--r--  1 root  _dehydrated  129 Nov  8 06:54 domains.txt

./.acme-challenges:
total 0

./accounts:
total 8
8 drwx------  2 _dehydrated  _dehydrated  512 Nov  8 06:45 =
aHR0cHM6Ly9hY21lLXYwMS5hcGkubGV0c2VuY3J5cHQub3JnL2RpcmVjdG9yeQo

=
./accounts/aHR0cHM6Ly9hY21lLXYwMS5hcGkubGV0c2VuY3J5cHQub3JnL2RpcmVjdG9yeQo=
:
total 16
8 -rw-------  1 _dehydrated  _dehydrated  3243 Nov  8 06:45 =
account_key.pem
8 -rw-------  1 _dehydrated  _dehydrated   960 Nov  8 06:45 =
registration_info.json

./certs:
total 8
8 drwxrwx---  2 root  _dehydrated  1536 Nov  8 06:56 covisp.net

./certs/covisp.net:
total 256
8 -rw-------  1 _dehydrated  _dehydrated  1728 Nov  8 04:44 =
cert-1478605489.csr
0 -rw-------  1 _dehydrated  _dehydrated     0 Nov  8 04:44 =
cert-1478605489.pem
8 -rw-------  1 _dehydrated  _dehydrated  1728 Nov  8 05:13 =
cert-1478607211.csr
0 -rw-------  1 _dehydrated  _dehydrated     0 Nov  8 05:13 =
cert-1478607211.pem
8 -rw-------  1 _dehydrated  _dehydrated  1728 Nov  8 05:15 =
cert-1478607331.csr
0 -rw-------  1 _dehydrated  _dehydrated     0 Nov  8 05:15 =
cert-1478607331.pem
8 -rw-------  1 _dehydrated  _dehydrated  1728 Nov  8 05:17 =
cert-1478607471.csr
0 -rw-------  1 _dehydrated  _dehydrated     0 Nov  8 05:17 =
cert-1478607471.pem
8 -rw-------  1 _dehydrated  _dehydrated  1728 Nov  8 05:21 =
cert-1478607699.csr
0 -rw-------  1 _dehydrated  _dehydrated     0 Nov  8 05:21 =
cert-1478607699.pem
8 -rw-------  1 _dehydrated  _dehydrated  1728 Nov  8 05:35 =
cert-1478608499.csr
0 -rw-------  1 _dehydrated  _dehydrated     0 Nov  8 05:35 =
cert-1478608499.pem
8 -rw-------  1 _dehydrated  _dehydrated  1728 Nov  8 05:37 =
cert-1478608627.csr
0 -rw-------  1 _dehydrated  _dehydrated     0 Nov  8 05:37 =
cert-1478608627.pem
8 -rw-------  1 _dehydrated  _dehydrated  1728 Nov  8 05:39 =
cert-1478608727.csr
0 -rw-------  1 _dehydrated  _dehydrated     0 Nov  8 05:39 =
cert-1478608727.pem
8 -rw-------  1 _dehydrated  _dehydrated  1728 Nov  8 05:40 =
cert-1478608812.csr
0 -rw-------  1 _dehydrated  _dehydrated     0 Nov  8 05:40 =
cert-1478608812.pem
8 -rw-------  1 _dehydrated  _dehydrated  1728 Nov  8 06:45 =
cert-1478612746.csr
0 -rw-------  1 _dehydrated  _dehydrated     0 Nov  8 06:45 =
cert-1478612746.pem
8 -rw-------  1 _dehydrated  _dehydrated  1728 Nov  8 06:49 =
cert-1478612933.csr
0 -rw-------  1 _dehydrated  _dehydrated     0 Nov  8 06:49 =
cert-1478612933.pem
8 -rw-------  1 _dehydrated  _dehydrated  1756 Nov  8 06:51 =
cert-1478613091.csr
0 -rw-------  1 _dehydrated  _dehydrated     0 Nov  8 06:51 =
cert-1478613091.pem
8 -rw-------  1 _dehydrated  _dehydrated  1756 Nov  8 06:53 =
cert-1478613186.csr
0 -rw-------  1 _dehydrated  _dehydrated     0 Nov  8 06:53 =
cert-1478613186.pem
8 -rw-------  1 _dehydrated  _dehydrated  1679 Nov  8 06:54 =
cert-1478613262.csr
0 -rw-------  1 _dehydrated  _dehydrated     0 Nov  8 06:54 =
cert-1478613262.pem
8 -rw-------  1 _dehydrated  _dehydrated  1679 Nov  8 06:55 =
cert-1478613335.csr
0 -rw-------  1 _dehydrated  _dehydrated     0 Nov  8 06:55 =
cert-1478613335.pem
8 -rw-------  1 _dehydrated  _dehydrated  1679 Nov  8 06:56 =
cert-1478613402.csr
0 -rw-------  1 _dehydrated  _dehydrated     0 Nov  8 06:56 =
cert-1478613402.pem
8 -rw-------  1 _dehydrated  _dehydrated  3247 Nov  8 04:44 =
privkey-1478605489.pem
8 -rw-------  1 _dehydrated  _dehydrated  3243 Nov  8 05:13 =
privkey-1478607211.pem
8 -rw-------  1 _dehydrated  _dehydrated  3243 Nov  8 05:15 =
privkey-1478607331.pem
8 -rw-------  1 _dehydrated  _dehydrated  3243 Nov  8 05:17 =
privkey-1478607471.pem
8 -rw-------  1 _dehydrated  _dehydrated  3243 Nov  8 05:21 =
privkey-1478607699.pem
8 -rw-------  1 _dehydrated  _dehydrated  3243 Nov  8 05:35 =
privkey-1478608499.pem
8 -rw-------  1 _dehydrated  _dehydrated  3243 Nov  8 05:37 =
privkey-1478608627.pem
8 -rw-------  1 _dehydrated  _dehydrated  3243 Nov  8 05:39 =
privkey-1478608727.pem
8 -rw-------  1 _dehydrated  _dehydrated  3247 Nov  8 05:40 =
privkey-1478608812.pem
8 -rw-------  1 _dehydrated  _dehydrated  3243 Nov  8 06:45 =
privkey-1478612746.pem
8 -rw-------  1 _dehydrated  _dehydrated  3247 Nov  8 06:49 =
privkey-1478612933.pem
8 -rw-------  1 _dehydrated  _dehydrated  3243 Nov  8 06:51 =
privkey-1478613091.pem
8 -rw-------  1 _dehydrated  _dehydrated  3243 Nov  8 06:53 =
privkey-1478613186.pem
8 -rw-------  1 _dehydrated  _dehydrated  3243 Nov  8 06:54 =
privkey-1478613262.pem
8 -rw-------  1 _dehydrated  _dehydrated  3243 Nov  8 06:55 =
privkey-1478613335.pem
8 -rw-------  1 _dehydrated  _dehydrated  3243 Nov  8 06:56 =
privkey-1478613402.pem





Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?C3108A51-6680-4F15-973F-8CA82F4C775B>