Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [certbot]

328 questions
3
votes
2 answers

SSL_ERROR_RX_RECORD_TOO_LONG after installing Certbot on Apache2

I'm trying to set up a web server on a raspberry pi, it's running a debian based system. I installed and set up apache (following this guide), set up port forwaring on my router and created 3 html only websites to test things. Since I only have one…
Simone
  • 31
  • 2
3
votes
0 answers

Nginx Docker Container stops working irregularly

The server: I use Nginx as a ingress-proxy for my server. Nginx runs within a Docker container. docker-compose.yml: nginx_ingress: image: nginx:latest ports: - "80:80" - "443:443" networks: front-tier: {} …
nulldevops
  • 131
  • 1
  • 4
3
votes
1 answer

When using Let's Encrypt certbot, how do I restart/reload a network service only once and only if the cerificate was actually renewed?

The certbot command provides two hooks that run after automated renewals, from the docs: --post-hook POST_HOOK Command to be run in a shell after attempting to obtain/renew certificates. Can be used to…
Walf
  • 401
  • 1
  • 6
  • 17
3
votes
2 answers

Renew Let's encrypt certificate automatically without stopping nginx hosted on docker

I am using nginx as proxy and SSL termination for the site hosted on docker. App & nginx both are on docker. I have installed Let's encrypt SSL using Certbot directly on Ubuntu server. And now using the SSL cert installed on Ubuntu server in Docker…
Krunal
  • 251
  • 1
  • 4
  • 16
3
votes
2 answers

I have a rewrite in an apache httpd conf file, that breaks certbot. Is there a way to change it so that it doesn't?

I have a subdomain set up in Apache httpd, that is front-ending for a Tomcat server, with the httpd server secured by Let's Encrypt. If I have the following rewrite active in the conf file, then certbot fails. RewriteEngine on RewriteCond…
hbquikcomjamesl
  • 259
  • 2
  • 16
3
votes
2 answers

Bind9 nsupdate update-policy rule to grant _acme-challenge.**.domain.tld (all additional subdomains)

Issue I'm using letsencrypt certbot's DNS-01 challenge, but it won't issue certificates more than one subdomain level deep. named.conf # grep -A 3 ^key /etc/bind/named.conf.local key "certbot." { algorithm hmac-sha512; secret …
ki9
  • 1,243
  • 1
  • 13
  • 19
3
votes
2 answers

Unable to use LetsEncrypt - CertBot - When HTTP to HTTPS redirect is setup

I am trying to configure CertBot and it only works when I serve my site over http. Usually I have an https redirect and I don't want to have to change the site config each time I need to use certbot. I tried to serve only /.well-known/ over http but…
FreeSoftwareServers
  • 515
  • 1
  • 8
  • 26
2
votes
1 answer

give systemd service access to certificates in protected folder

I use certbot to generate certificate files. The certificate files are created in /etc/letsencrypt/live/.... The live folder is created by certbot and is only accessible to admins. In the past, I then copied these files to the folder of my…
bvdb
  • 225
  • 2
  • 9
2
votes
1 answer

certbot-auto fails with error message ImportError: cannot import name _remove_dead_weakref

After Debian upgrade certbot-auto fails with an error message Error: couldn't get currently installed version for /opt/eff.org/certbot/venv/bin/letsencrypt: Traceback (most recent call last): File "/opt/eff.org/certbot/venv/bin/letsencrypt", line…
karlsebal
  • 283
  • 2
  • 14
2
votes
2 answers

Install Certbot in Red Hat Enterprise Linux 8 manually

I'm just using Red Hat Enterprise Linux 8 and the EPEL release ver 8 not released yet. So I choose manual installation and following this step: https://certbot.eff.org/lets-encrypt/pip-nginx And I always getting this Error sudo…
haidarvm
  • 121
  • 1
  • 4
2
votes
2 answers

Files being served as HTTP instead of HTTPS

I've just set up an nginx server and letsencrypt, and I think some of the changes certbot has made to my config has messed things up. I want my website to use HTTPS by default, and to serve all files with HTTPS to avoid mixed content errors…
Matadeleo
  • 121
  • 2
2
votes
0 answers

Failed to renew SSL certificates using Certbot's "dry-run" command

I was using apache for my website and created the SSL for Apache. Then for some reason, I have to change my server from Apache to Node.js. To do that I just copied the SSL certificates path from Apache’s Vhost file and pasted it in the configuration…
Amarjit Singh
  • 121
  • 4
2
votes
1 answer

Forbidden after enabling SSL

I recently used LetsEncrypt's Certbot to enable SSL on my server. It's running Apache 2.4.18 with Django 1.11 on Ubuntu 16.04. As explained here, I duplicated my :80 VirtualHost definition for 443 in the same file. I am now getting 403 Forbidden…
BThompson
  • 191
  • 1
  • 1
  • 7
2
votes
1 answer

Nginx as Reverse Proxy and LetsEncrypt

Although there's aplethora of articles on the web about this, I'm still having issues getting this to work. I've set up nginx on ubunto 18.04 - everythings is patched to date. I installed Certbot (sudo apt-get install python-certbot-nginx) I'm using…
Scepticalist
  • 131
  • 1
  • 8
2
votes
0 answers

LetsEncrypt unable to authorize

I have setup my server on digital ocean, and followed along with https://www.digitalocean.com/community/tutorials/how-to-secure-nginx-with-let-s-encrypt-on-ubuntu-16-04 When I tried to run the command: sudo certbot --nginx --debug-challenges -v -d…
Luple
  • 121
  • 3
1 2 3
21 22