Jump to content
Froxlor Forum

irisdina

Members
  • Content Count

    89
  • Joined

  • Days Won

    12

irisdina last won the day on May 28 2019

irisdina had the most liked content!

Community Reputation

1 Neutral

About irisdina

  • Rank
    Advanced Froxie

Recent Profile Visitors

2761 profile views
  1. Certs sind wieder da, auch im froxlor-custom ordner.
  2. LE sagt ja bei Limit Rate Also nehme ich jetzt an, das es am IP Bereich liegt, aber dagegen kann ich ja selbst nicht tun, sondern, da müsste jetzt hetzner was machen. daher bleibt mir nichts anderes übrig, als einige tage zu warten. Und 300 Anfragen kann ich ja selbst gar nicht, erstellen. ich benutze ja nicht mal den cron für frox, das er alle 5min die anfragen an LE sendet.
  3. ok, ich schreibe noch mal alles auf. Limit Rate Fehler [Sat 06 Jun 2020 03:33:08 PM CEST] Create new order error. Le_OrderFinalize not found. { "type": "urn:ietf:params:acme:error:rateLimited", "detail": "Error creating new order :: too many certificates already issued for exact set of domains: imap.tokushu.xxxxxx.eu,imaps.tokushu.xxxxxx.eu,mail.tokushu.xxxxxx.eu,pop3.tokushu.xxxxxx.eu,pop3s.tokushu.xxxxxx.eu,smtp.tokushu.xxxxxx.eu,smtps.tokushu.xxxxxx.eu,ssl.smtp.tokushu.xxxxxx.eu,ssl.tokushu.xxxxxx.eu,tokushu.xxxxxx.eu: see https://letsencrypt.org/docs/rate-limits/", [Sat 06 Jun 2020 03:33:06 PM CEST] Multi domain='DNS:tokushu.xxxxxx.eu,DNS:ssl.smtp.tokushu.xxxxxx.eu,DNS:smtp.tokushu.xxxxxx.eu,DNS:smtps.tokushu.xxxxxx.eu,DNS:pop3.tokushu.xxxxxx.eu,DNS:pop3s.tokushu.xxxxxx.eu,DNS:imaps.tokushu.xxxxxx.eu,DNS:imap.tokushu.xxxxxx.eu,DNS:mail.tokushu.xxxxxx.eu,DNS:ssl.tokushu.xxxxxx.eu [Sat 06 Jun 2020 03:33:06 PM CEST] Getting domain auth token for each domain [error] Could not find file 'tokushu.xxxxxx.eu.cer' in '/root/.acme.sh/tokushu.xxxxxx.eu/' [error] Could not find file 'ca.cer' in '/root/.acme.sh/tokushu.xxxxxx.eu/' [error] Could not find file 'fullchain.cer' in '/root/.acme.sh/tokushu.xxxxxx.eu/' [error] Could not get Let's Encrypt certificate for tokushu.xxxxxx.eu: https://github.com/acmesh-official/acme.sh v2.8.6 [Sat 06 Jun 2020 03:33:03 PM CEST] Creating domain key [Sat 06 Jun 2020 03:33:06 PM CEST] The domain key is here: /root/.acme.sh/tokushu.xxxxxx.eu/tokushu.xxxxxx.eu.key [Sat 06 Jun 2020 03:33:06 PM CEST] Multi domain='DNS:tokushu.xxxxxx.eu,DNS:ssl.smtp.tokushu.xxxxxx.eu,DNS:smtp.tokushu.xxxxxx.eu,DNS:smtps.tokushu.xxxxxx.eu,DNS:pop3.tokushu.xxxxxx.eu,DNS:pop3s.tokushu.xxxxxx.eu,DNS:imaps.tokushu.xxxxxx.eu,DNS:imap.tokushu.xxxxxx.eu,DNS:mail.tokushu.xxxxxx.eu,DNS:ssl.tokushu.xxxxxx.eu' [Sat 06 Jun 2020 03:33:06 PM CEST] Getting domain auth token for each domain [error] Could not find file 'xxxxxx.eu.cer' in '/root/.acme.sh/xxxxxx.eu/' [error] Could not find file 'ca.cer' in '/root/.acme.sh/xxxxxx.eu/' [error] Could not find file 'fullchain.cer' in '/root/.acme.sh/xxxxxx.eu/' [error] Could not get Let's Encrypt certificate for xxxxxx.eu: [error] Could not find certificate-folder '/root/.acme.sh/webmail.xxxxxx.eu/' [error] Could not get Let's Encrypt certificate for webmail.xxxxxx.eu: [error] Could not find file 'xxxxxx.eu.cer' in '/root/.acme.sh/xxxxxx.eu/' [error] Could not find file 'ca.cer' in '/root/.acme.sh/xxxxxx.eu/' [error] Could not find file 'fullchain.cer' in '/root/.acme.sh/xxxxxx.eu/' [error] Could not get Let's Encrypt certificate for xxxxxx.eu: [error] Could not find file 'tokushu.xxxxxx.eu.cer' in '/root/.acme.sh/tokushu.xxxxxx.eu/' [error] Could not find file 'ca.cer' in '/root/.acme.sh/tokushu.xxxxxx.eu/' [error] Could not find file 'fullchain.cer' in '/root/.acme.sh/tokushu.xxxxxx.eu/' [error] Could not get Let's Encrypt certificate for tokushu.xxxxxx.eu: nginx: [emerg] no "ssl_certificate" is defined for the "listen ... ssl" directive in /etc/nginx/sites-enabled/10_froxlor_ipandport_xxxxxxxx.443.conf:5 nginx: configuration file /etc/nginx/nginx.conf test failed Hier heißt es halt einfach abwarten und tee trinken. nginx meckert, deswegen. nginx: [emerg] no "ssl_certificate" is defined for the "listen ... ssl" directive in /etc/nginx/sites-enabled/10_froxlor_ipandport_xxxxxxxx.443.conf:5 nginx: configuration file /etc/nginx/nginx.conf test failed frox vohost # 10_froxlor_ipandport_2a01.4f8.10a.1ca0.2.443.conf # Created 06.06.2020 15:33 # Do NOT manually edit this file, all changes will be deleted after the next domain change at the panel. server { listen [xxxxx:443 default_server; # Froxlor default vhost server_name tokushu.xxxxxx.eu ssl.smtp.tokushu.xxxxxx.eu smtp.tokushu.xxxxxx.eu smtps.tokushu.xxxxxx.eu pop3.tokushu.xxxxxx.eu pop3s.tokushu.xxxxxx.eu imaps.tokushu.xxxxxx.eu imap.tokushu.xxxxxx.eu mail.tokushu.xxxxxx.eu ssl.tokushu.xxxxxx.eu; access_log /var/log/nginx/access.log combined; include /etc/nginx/acme.conf; root /var/www/html/; index index.php index.html index.htm; location / { } location ~ \.php { fastcgi_split_path_info ^(.+?\.php)(/.*)$; include /etc/nginx/fastcgi_params; fastcgi_param SCRIPT_FILENAME $request_filename; fastcgi_param PATH_INFO $fastcgi_path_info; try_files $fastcgi_script_name =404; fastcgi_param HTTPS on; fastcgi_pass unix:/var/run/1-froxlor.panel-tokushu.xxxxxx.eu-php-fpm.socket; fastcgi_index index.php; } } im vhost fehlt die komplette ssl teil, kA ob es jetzt daran liegt, weil die dateien gar nicht auf dem server existieren. Und passiert ist das ganze, nachdem ich git update gemacht hatte und eine weitere sub-domain in frox eingefügt hatte inkl. außerhalb des standart verz. ich tippe, das bei der sub-domains in den dns settings irgendwas schief gegangen ist, weil sonst würde ich nicht ins limit von let's kommen. da muss ich aber warten was jetzt genau DD24 sagt. *Edit* habe gerade mal eine normal domain in frox wieder aktiviert und mir den vhost angesehen. da erstellt er den ssl teil auch nicht. # 35_froxlor_ssl_vhost_xxxxxx.eu.conf # Created 06.06.2020 15:33 # Do NOT manually edit this file, all changes will be deleted after the next domain change at the panel. server { listen xxxxxx:443 ssl http2; listen xxxxxx:443 ssl http2; server_name xxxxxx.eu www.xxxxxx.eu; include /etc/nginx/acme.conf; access_log /var/customers/logs/miyu-xxxxxx.eu-access.log combined; error_log /var/customers/logs/miyu-xxxxxx.eu-error.log error; root /var/customers/webs/miyu/xxxxxx.eu/; location / { index index.php index.html index.htm; try_files $uri $uri/ @rewrites; } location @rewrites { rewrite ^ /index.php last; } location /wp-admin/ { auth_basic "admin"; auth_basic_user_file /etc/nginx/froxlor-htpasswd/3-dd21b0986498e35eed24fc226a97dc1c.htpasswd; index index.php index.html index.htm; location ~ ^(.+?\.php)(/.*)?$ { try_files /524a059727b9e290aa349e62c68c172f.htm @php; } } location ~ ^(.+?\.php)(/.*)?$ { try_files /524a059727b9e290aa349e62c68c172f.htm @php; } location @php { try_files $1 =404; include /etc/nginx/fastcgi_params; fastcgi_split_path_info ^(.+?\.php)(/.*)$; fastcgi_param SCRIPT_FILENAME $request_filename; fastcgi_param PATH_INFO $2; fastcgi_param HTTPS on; fastcgi_pass unix:/var/run/1-miyu-xxxxxx.eu-php-fpm.socket; fastcgi_index index.php; } }
  4. Aktuell bleibt mir auch nichts anderes übrig, als dieses Manuelle gefrickel zu machen, solange ich im Limit bei Let's bin. Daher warte ich mal einige Tage, dann setze ich mich nochmal dran.
  5. ja, habe per certbot einfach die zerts erstellt. probiere in einigen tagen dann nochmal mit der acme.sh und frox
  6. hab die einstellungen gefunden. nur erstellt mir die acme.sh jetzt überhaupt kein cert mehr, egal für welche domain. wenn ich bei frox --force --debug mache.
  7. dann muss ich halt einige tage jetzt mal warten. wie verhindere ich jetzt, wenn ich meine domains wieder dazu packe, das er mir für die froxlor url, das cert holt?
  8. nope, an der DB hab ich direkt nichts gemacht. Und ja, den Fehler habe ich auch gesehen, aber warum kann ich dann ohne probleme manuell mehrmals am tag das cert erstellen? ^^
  9. [Fri 05 Jun 2020 12:10:38 PM CEST] tokushu.xxxxxx.eu is removed, the key and cert files are in /root/.acme.sh/tokushu.xxxxxx.eu_ecc [Fri 05 Jun 2020 12:10:38 PM CEST] You can remove them by yourself. root@tokushu ~ # rm -r .acme.sh/ root@tokushu ~ # php /var/www/html/froxlor/scripts/froxlor_master_cronjob.php --force --debug [information] TasksCron: Searching for tasks to do [information] Running Let's Encrypt cronjob prior to regenerating webserver config files [information] Could not find acme.sh - installing it to /root/.acme.sh/ --2020-06-05 12:16:00-- https://get.acme.sh/ Resolving get.acme.sh (get.acme.sh)... 2606:4700:3031::ac43:d022, 2606:4700:3037::681f:5944, 2606:4700:3033::681f:5844, ... Connecting to get.acme.sh (get.acme.sh)|2606:4700:3031::ac43:d022|:443... connected. HTTP request sent, awaiting response... 200 OK Length: unspecified [text/html] Saving to: ‘STDOUT’ - [ <=> ] 775 --.-KB/s in 0s 2020-06-05 12:16:00 (10.7 MB/s) - written to stdout [775] % Total % Received % Xferd Average Speed Time Time Time Current Dload Upload Total Spent Left Speed 100 192k 100 192k 0 0 3264k 0 --:--:-- --:--:-- --:--:-- 3264k [information] Requesting 1 new Let's Encrypt certificates [information] Creating certificate for tokushu.xxxxxx.eu [information] Adding common-name: tokushu.xxxxxx.eu PHP Notice: Undefined index: wwwserveralias in /var/www/html/froxlor/lib/Froxlor/Cron/Http/LetsEncrypt/AcmeSh.php on line 224 [information] Adding SAN entry: ssl.smtp.tokushu.xxxxxx.eu [information] Adding SAN entry: smtp.tokushu.xxxxxx.eu [information] Adding SAN entry: smtps.tokushu.xxxxxx.eu [information] Adding SAN entry: pop3.tokushu.xxxxxx.eu [information] Adding SAN entry: pop3s.tokushu.xxxxxx.eu [information] Adding SAN entry: imaps.tokushu.xxxxxx.eu [information] Adding SAN entry: imap.tokushu.xxxxxx.eu [information] Adding SAN entry: mail.tokushu.xxxxxx.eu [information] Adding SAN entry: ssl.tokushu.xxxxxx.eu [information] Validating DNS of tokushu.xxxxxx.eu [information] Validating DNS of ssl.smtp.tokushu.xxxxxx.eu [information] Validating DNS of smtp.tokushu.xxxxxx.eu [information] Validating DNS of smtps.tokushu.xxxxxx.eu [information] Validating DNS of pop3.tokushu.xxxxxx.eu [information] Validating DNS of pop3s.tokushu.xxxxxx.eu [information] Validating DNS of imaps.tokushu.xxxxxx.eu [information] Validating DNS of imap.tokushu.xxxxxx.eu [information] Validating DNS of mail.tokushu.xxxxxx.eu [information] Validating DNS of ssl.tokushu.xxxxxx.eu [information] Checking for LetsEncrypt client upgrades before renewing certificates: [Fri 05 Jun 2020 12:16:02 PM CEST] Already uptodate! [Fri 05 Jun 2020 12:16:02 PM CEST] Upgrade success! [Fri 05 Jun 2020 12:16:02 PM CEST] Installing cron job 32 0 * * * "/root/.acme.sh"/acme.sh --cron --home "/root/.acme.sh" > /dev/null [Fri 05 Jun 2020 12:16:02 PM CEST] Lets find script dir. [Fri 05 Jun 2020 12:16:02 PM CEST] _SCRIPT_='/root/.acme.sh/acme.sh' [Fri 05 Jun 2020 12:16:02 PM CEST] _script='/root/.acme.sh/acme.sh' [Fri 05 Jun 2020 12:16:02 PM CEST] _script_home='/root/.acme.sh' [Fri 05 Jun 2020 12:16:02 PM CEST] Using config home:/root/.acme.sh [Fri 05 Jun 2020 12:16:02 PM CEST] Using server: https://acme-v02.api.letsencrypt.org/directory [Fri 05 Jun 2020 12:16:02 PM CEST] Running cmd: issue [Fri 05 Jun 2020 12:16:02 PM CEST] _main_domain='tokushu.xxxxxx.eu' [Fri 05 Jun 2020 12:16:02 PM CEST] _alt_domains='ssl.smtp.tokushu.xxxxxx.eu,smtp.tokushu.xxxxxx.eu,smtps.tokushu.xxxxxx.eu,pop3.tokushu.xxxxxx.eu,pop3s.tokushu.xxxxxx.eu,imaps.tokushu.xxxxxx.eu,imap.tokushu.xxxxxx.eu,mail.tokushu.xxxxxx.eu,ssl.tokushu.xxxxxx.eu' [Fri 05 Jun 2020 12:16:02 PM CEST] Using config home:/root/.acme.sh [Fri 05 Jun 2020 12:16:02 PM CEST] ACME_DIRECTORY='https://acme-v02.api.letsencrypt.org/directory' [Fri 05 Jun 2020 12:16:02 PM CEST] DOMAIN_PATH='/root/.acme.sh/tokushu.xxxxxx.eu_ecc' [Fri 05 Jun 2020 12:16:02 PM CEST] Using ACME_DIRECTORY: https://acme-v02.api.letsencrypt.org/directory [Fri 05 Jun 2020 12:16:02 PM CEST] _init api for server: https://acme-v02.api.letsencrypt.org/directory [Fri 05 Jun 2020 12:16:02 PM CEST] GET [Fri 05 Jun 2020 12:16:02 PM CEST] url='https://acme-v02.api.letsencrypt.org/directory' [Fri 05 Jun 2020 12:16:02 PM CEST] timeout= [Fri 05 Jun 2020 12:16:02 PM CEST] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header -g ' [Fri 05 Jun 2020 12:16:03 PM CEST] ret='0' [Fri 05 Jun 2020 12:16:03 PM CEST] ACME_KEY_CHANGE='https://acme-v02.api.letsencrypt.org/acme/key-change' [Fri 05 Jun 2020 12:16:03 PM CEST] ACME_NEW_AUTHZ [Fri 05 Jun 2020 12:16:03 PM CEST] ACME_NEW_ORDER='https://acme-v02.api.letsencrypt.org/acme/new-order' [Fri 05 Jun 2020 12:16:03 PM CEST] ACME_NEW_ACCOUNT='https://acme-v02.api.letsencrypt.org/acme/new-acct' [Fri 05 Jun 2020 12:16:03 PM CEST] ACME_REVOKE_CERT='https://acme-v02.api.letsencrypt.org/acme/revoke-cert' [Fri 05 Jun 2020 12:16:03 PM CEST] ACME_AGREEMENT='https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf' [Fri 05 Jun 2020 12:16:03 PM CEST] ACME_NEW_NONCE='https://acme-v02.api.letsencrypt.org/acme/new-nonce' [Fri 05 Jun 2020 12:16:03 PM CEST] ACME_VERSION='2' [Fri 05 Jun 2020 12:16:03 PM CEST] _on_before_issue [Fri 05 Jun 2020 12:16:03 PM CEST] _chk_main_domain='tokushu.xxxxxx.eu' [Fri 05 Jun 2020 12:16:03 PM CEST] _chk_alt_domains='ssl.smtp.tokushu.xxxxxx.eu,smtp.tokushu.xxxxxx.eu,smtps.tokushu.xxxxxx.eu,pop3.tokushu.xxxxxx.eu,pop3s.tokushu.xxxxxx.eu,imaps.tokushu.xxxxxx.eu,imap.tokushu.xxxxxx.eu,mail.tokushu.xxxxxx.eu,ssl.tokushu.xxxxxx.eu' [Fri 05 Jun 2020 12:16:03 PM CEST] Le_LocalAddress [Fri 05 Jun 2020 12:16:03 PM CEST] d='tokushu.xxxxxx.eu' [Fri 05 Jun 2020 12:16:03 PM CEST] Check for domain='tokushu.xxxxxx.eu' [Fri 05 Jun 2020 12:16:03 PM CEST] _currentRoot='/var/www/html/froxlor' [Fri 05 Jun 2020 12:16:03 PM CEST] d='ssl.smtp.tokushu.xxxxxx.eu' [Fri 05 Jun 2020 12:16:03 PM CEST] Check for domain='ssl.smtp.tokushu.xxxxxx.eu' [Fri 05 Jun 2020 12:16:03 PM CEST] _currentRoot='/var/www/html/froxlor' [Fri 05 Jun 2020 12:16:03 PM CEST] d='smtp.tokushu.xxxxxx.eu' [Fri 05 Jun 2020 12:16:03 PM CEST] Check for domain='smtp.tokushu.xxxxxx.eu' [Fri 05 Jun 2020 12:16:03 PM CEST] _currentRoot='/var/www/html/froxlor' [Fri 05 Jun 2020 12:16:03 PM CEST] d='smtps.tokushu.xxxxxx.eu' [Fri 05 Jun 2020 12:16:03 PM CEST] Check for domain='smtps.tokushu.xxxxxx.eu' [Fri 05 Jun 2020 12:16:03 PM CEST] _currentRoot='/var/www/html/froxlor' [Fri 05 Jun 2020 12:16:03 PM CEST] d='pop3.tokushu.xxxxxx.eu' [Fri 05 Jun 2020 12:16:03 PM CEST] Check for domain='pop3.tokushu.xxxxxx.eu' [Fri 05 Jun 2020 12:16:03 PM CEST] _currentRoot='/var/www/html/froxlor' [Fri 05 Jun 2020 12:16:03 PM CEST] d='pop3s.tokushu.xxxxxx.eu' [Fri 05 Jun 2020 12:16:03 PM CEST] Check for domain='pop3s.tokushu.xxxxxx.eu' [Fri 05 Jun 2020 12:16:03 PM CEST] _currentRoot='/var/www/html/froxlor' [Fri 05 Jun 2020 12:16:03 PM CEST] d='imaps.tokushu.xxxxxx.eu' [Fri 05 Jun 2020 12:16:03 PM CEST] Check for domain='imaps.tokushu.xxxxxx.eu' [Fri 05 Jun 2020 12:16:03 PM CEST] _currentRoot='/var/www/html/froxlor' [Fri 05 Jun 2020 12:16:03 PM CEST] d='imap.tokushu.xxxxxx.eu' [Fri 05 Jun 2020 12:16:03 PM CEST] Check for domain='imap.tokushu.xxxxxx.eu' [Fri 05 Jun 2020 12:16:03 PM CEST] _currentRoot='/var/www/html/froxlor' [Fri 05 Jun 2020 12:16:03 PM CEST] d='mail.tokushu.xxxxxx.eu' [Fri 05 Jun 2020 12:16:03 PM CEST] Check for domain='mail.tokushu.xxxxxx.eu' [Fri 05 Jun 2020 12:16:03 PM CEST] _currentRoot='/var/www/html/froxlor' [Fri 05 Jun 2020 12:16:03 PM CEST] d='ssl.tokushu.xxxxxx.eu' [Fri 05 Jun 2020 12:16:03 PM CEST] Check for domain='ssl.tokushu.xxxxxx.eu' [Fri 05 Jun 2020 12:16:03 PM CEST] _currentRoot='/var/www/html/froxlor' [Fri 05 Jun 2020 12:16:03 PM CEST] d [Fri 05 Jun 2020 12:16:03 PM CEST] config file is empty, can not read CA_KEY_HASH [Fri 05 Jun 2020 12:16:03 PM CEST] Using config home:/root/.acme.sh [Fri 05 Jun 2020 12:16:03 PM CEST] ACME_DIRECTORY='https://acme-v02.api.letsencrypt.org/directory' [Fri 05 Jun 2020 12:16:03 PM CEST] _init api for server: https://acme-v02.api.letsencrypt.org/directory [Fri 05 Jun 2020 12:16:03 PM CEST] Use default length 2048 [Fri 05 Jun 2020 12:16:03 PM CEST] length='2048' [Fri 05 Jun 2020 12:16:03 PM CEST] Using config home:/root/.acme.sh [Fri 05 Jun 2020 12:16:03 PM CEST] ACME_DIRECTORY='https://acme-v02.api.letsencrypt.org/directory' [Fri 05 Jun 2020 12:16:03 PM CEST] Use length 2048 [Fri 05 Jun 2020 12:16:03 PM CEST] Using RSA: 2048 [Fri 05 Jun 2020 12:16:03 PM CEST] RSA key [Fri 05 Jun 2020 12:16:03 PM CEST] url='https://acme-v02.api.letsencrypt.org/acme/new-acct' [Fri 05 Jun 2020 12:16:03 PM CEST] payload='{"termsOfServiceAgreed": true}' [Fri 05 Jun 2020 12:16:03 PM CEST] HEAD [Fri 05 Jun 2020 12:16:03 PM CEST] _post_url='https://acme-v02.api.letsencrypt.org/acme/new-nonce' [Fri 05 Jun 2020 12:16:03 PM CEST] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header -g -I ' [Fri 05 Jun 2020 12:16:04 PM CEST] _ret='0' [Fri 05 Jun 2020 12:16:04 PM CEST] POST [Fri 05 Jun 2020 12:16:04 PM CEST] _post_url='https://acme-v02.api.letsencrypt.org/acme/new-acct' [Fri 05 Jun 2020 12:16:04 PM CEST] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header -g ' [Fri 05 Jun 2020 12:16:04 PM CEST] _ret='0' [Fri 05 Jun 2020 12:16:04 PM CEST] code='201' [Fri 05 Jun 2020 12:16:05 PM CEST] _accUri='https://acme-v02.api.letsencrypt.org/acme/acct/88035139' [Fri 05 Jun 2020 12:16:05 PM CEST] Calc CA_KEY_HASH='e02+ECTYr4IfbyDmDYosA/zUqrPtyvnZowoRK80fq/o=' [Fri 05 Jun 2020 12:16:05 PM CEST] Read key length: [Fri 05 Jun 2020 12:16:05 PM CEST] Using config home:/root/.acme.sh [Fri 05 Jun 2020 12:16:05 PM CEST] ACME_DIRECTORY='https://acme-v02.api.letsencrypt.org/directory' [Fri 05 Jun 2020 12:16:05 PM CEST] Use length 384 [Fri 05 Jun 2020 12:16:05 PM CEST] Using ec name: secp384r1 [Fri 05 Jun 2020 12:16:05 PM CEST] _createcsr [Fri 05 Jun 2020 12:16:05 PM CEST] d='ssl.smtp.tokushu.xxxxxx.eu' [Fri 05 Jun 2020 12:16:05 PM CEST] d='smtp.tokushu.xxxxxx.eu' [Fri 05 Jun 2020 12:16:05 PM CEST] d='smtps.tokushu.xxxxxx.eu' [Fri 05 Jun 2020 12:16:05 PM CEST] d='pop3.tokushu.xxxxxx.eu' [Fri 05 Jun 2020 12:16:05 PM CEST] d='pop3s.tokushu.xxxxxx.eu' [Fri 05 Jun 2020 12:16:05 PM CEST] d='imaps.tokushu.xxxxxx.eu' [Fri 05 Jun 2020 12:16:05 PM CEST] d='imap.tokushu.xxxxxx.eu' [Fri 05 Jun 2020 12:16:05 PM CEST] d='mail.tokushu.xxxxxx.eu' [Fri 05 Jun 2020 12:16:05 PM CEST] d='ssl.tokushu.xxxxxx.eu' [Fri 05 Jun 2020 12:16:05 PM CEST] d [Fri 05 Jun 2020 12:16:05 PM CEST] url='https://acme-v02.api.letsencrypt.org/acme/new-order' [Fri 05 Jun 2020 12:16:05 PM CEST] payload='{"identifiers": [{"type":"dns","value":"tokushu.xxxxxx.eu"},{"type":"dns","value":"ssl.smtp.tokushu.xxxxxx.eu"},{"type":"dns","value":"smtp.tokushu.xxxxxx.eu"},{"type":"dns","value":"smtps.tokushu.xxxxxx.eu"},{"type":"dns","value":"pop3.tokushu.xxxxxx.eu"},{"type":"dns","value":"pop3s.tokushu.xxxxxx.eu"},{"type":"dns","value":"imaps.tokushu.xxxxxx.eu"},{"type":"dns","value":"imap.tokushu.xxxxxx.eu"},{"type":"dns","value":"mail.tokushu.xxxxxx.eu"},{"type":"dns","value":"ssl.tokushu.xxxxxx.eu"}]}' [Fri 05 Jun 2020 12:16:05 PM CEST] POST [Fri 05 Jun 2020 12:16:05 PM CEST] _post_url='https://acme-v02.api.letsencrypt.org/acme/new-order' [Fri 05 Jun 2020 12:16:05 PM CEST] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header -g ' [Fri 05 Jun 2020 12:16:05 PM CEST] _ret='0' [Fri 05 Jun 2020 12:16:05 PM CEST] code='429' [Fri 05 Jun 2020 12:16:05 PM CEST] Le_LinkOrder [Fri 05 Jun 2020 12:16:05 PM CEST] Le_OrderFinalize [Fri 05 Jun 2020 12:16:05 PM CEST] Create new order error. Le_OrderFinalize not found. { "type": "urn:ietf:params:acme:error:rateLimited", "detail": "Error creating new order :: too many certificates already issued for exact set of domains: imap.tokushu.xxxxxx.eu,imaps.tokushu.xxxxxx.eu,mail.tokushu.xxxxxx.eu,pop3.tokushu.xxxxxx.eu,pop3s.tokushu.xxxxxx.eu,smtp.tokushu.xxxxxx.eu,smtps.tokushu.xxxxxx.eu,ssl.smtp.tokushu.xxxxxx.eu,ssl.tokushu.xxxxxx.eu,tokushu.xxxxxx.eu: see https://letsencrypt.org/docs/rate-limits/", "status": 429 } [Fri 05 Jun 2020 12:16:05 PM CEST] pid [Fri 05 Jun 2020 12:16:05 PM CEST] No need to restore nginx, skip. [Fri 05 Jun 2020 12:16:05 PM CEST] _clearupdns [Fri 05 Jun 2020 12:16:05 PM CEST] dns_entries [Fri 05 Jun 2020 12:16:05 PM CEST] skip dns. [Fri 05 Jun 2020 12:16:05 PM CEST] _on_issue_err [Fri 05 Jun 2020 12:16:05 PM CEST] Please add '--debug' or '--log' to check more details. [Fri 05 Jun 2020 12:16:05 PM CEST] See: https://github.com/acmesh-official/acme.sh/wiki/How-to-debug-acme.sh [Fri 05 Jun 2020 12:16:05 PM CEST] Diagnosis versions: openssl:openssl OpenSSL 1.1.1g 21 Apr 2020 apache: apache doesn't exists. nginx: nginx version: nginx/1.18.0 built with OpenSSL 1.1.1g 21 Apr 2020 TLS SNI support enabled configure arguments: --with-cc-opt='-g -O2 -fdebug-prefix-map=/build/nginx-HHffKl/nginx-1.18.0=. -fstack-protector-strong -Wformat -Werror=format-security -fPIC -Wdate-time -D_FORTIFY_SOURCE=2' --with-ld-opt='-Wl,-Bsymbolic-functions -Wl,-z,relro -Wl,-z,now -fPIC' --prefix=/usr/share/nginx --conf-path=/etc/nginx/nginx.conf --http-log-path=/var/log/nginx/access.log --error-log-path=/var/log/nginx/error.log --lock-path=/var/lock/nginx.lock --pid-path=/run/nginx.pid --modules-path=/usr/lib/nginx/modules --http-client-body-temp-path=/var/lib/nginx/body --http-fastcgi-temp-path=/var/lib/nginx/fastcgi --http-proxy-temp-path=/var/lib/nginx/proxy --http-scgi-temp-path=/var/lib/nginx/scgi --http-uwsgi-temp-path=/var/lib/nginx/uwsgi --with-debug --with-pcre-jit --with-http_ssl_module --with-http_stub_status_module --with-http_realip_module --with-http_auth_request_module --with-http_v2_module --with-http_dav_module --with-http_slice_module --with-threads --with-http_addition_module --with-http_geoip_module=dynamic --with-http_gunzip_module --with-http_gzip_static_module --with-http_image_filter_module=dynamic --with-http_sub_module --with-http_xslt_module=dynamic --with-stream=dynamic --with-stream_ssl_module --with-stream_ssl_preread_module --with-mail=dynamic --with-mail_ssl_module --add-dynamic-module=/build/nginx-HHffKl/nginx-1.18.0/debian/modules/http-auth-pam --add-dynamic-module=/build/nginx-HHffKl/nginx-1.18.0/debian/modules/http-dav-ext --add-dynamic-module=/build/nginx-HHffKl/nginx-1.18.0/debian/modules/http-echo --add-dynamic-module=/build/nginx-HHffKl/nginx-1.18.0/debian/modules/http-upstream-fair --add-dynamic-module=/build/nginx-HHffKl/nginx-1.18.0/debian/modules/http-subs-filter socat: socat by Gerhard Rieger and contributors - see www.dest-unreach.org socat version 1.7.3.3 on Oct 26 2019 17:42:04 running on Linux version #46-Ubuntu SMP Thu Dec 6 14:45:28 UTC 2018, release 4.15.0-43-generic, machine x86_64 features: #define WITH_STDIO 1 #define WITH_FDNUM 1 #define WITH_FILE 1 #define WITH_CREAT 1 #define WITH_GOPEN 1 #define WITH_TERMIOS 1 #define WITH_PIPE 1 #define WITH_UNIX 1 #define WITH_ABSTRACT_UNIXSOCKET 1 #define WITH_IP4 1 #define WITH_IP6 1 #define WITH_RAWIP 1 #define WITH_GENERICSOCKET 1 #define WITH_INTERFACE 1 #define WITH_TCP 1 #define WITH_UDP 1 #define WITH_SCTP 1 #define WITH_LISTEN 1 #define WITH_SOCKS4 1 #define WITH_SOCKS4A 1 #define WITH_PROXY 1 #define WITH_SYSTEM 1 #define WITH_EXEC 1 #undef WITH_READLINE #define WITH_TUN 1 #define WITH_PTY 1 #define WITH_OPENSSL 1 #undef WITH_FIPS #define WITH_LIBWRAP 1 #define WITH_SYCLS 1 #define WITH_FILAN 1 #define WITH_RETRY 1 #define WITH_MSGLEVEL 0 /*debug*/ [debug] https://github.com/acmesh-official/acme.sh v2.8.6 [Fri 05 Jun 2020 12:16:03 PM CEST] Create account key ok. [Fri 05 Jun 2020 12:16:03 PM CEST] Registering account [Fri 05 Jun 2020 12:16:04 PM CEST] Registered [Fri 05 Jun 2020 12:16:05 PM CEST] ACCOUNT_THUMBPRINT='6Dckd7KQQrw3m8i9ygIeg_q7IQV5TRUNnKO2UgGoHOI' [Fri 05 Jun 2020 12:16:05 PM CEST] Creating domain key [Fri 05 Jun 2020 12:16:05 PM CEST] The domain key is here: /root/.acme.sh/tokushu.xxxxxx.eu_ecc/tokushu.xxxxxx.eu.key [Fri 05 Jun 2020 12:16:05 PM CEST] Multi domain='DNS:tokushu.xxxxxx.eu,DNS:ssl.smtp.tokushu.xxxxxx.eu,DNS:smtp.tokushu.xxxxxx.eu,DNS:smtps.tokushu.xxxxxx.eu,DNS:pop3.tokushu.xxxxxx.eu,DNS:pop3s.tokushu.xxxxxx.eu,DNS:imaps.tokushu.xxxxxx.eu,DNS:imap.tokushu.xxxxxx.eu,DNS:mail.tokushu.xxxxxx.eu,DNS:ssl.tokushu.xxxxxx.eu' [Fri 05 Jun 2020 12:16:05 PM CEST] Getting domain auth token for each domain [error] Could not find file 'tokushu.xxxxxx.eu.cer' in '/root/.acme.sh/tokushu.xxxxxx.eu_ecc/' [error] Could not find file 'ca.cer' in '/root/.acme.sh/tokushu.xxxxxx.eu_ecc/' [error] Could not find file 'fullchain.cer' in '/root/.acme.sh/tokushu.xxxxxx.eu_ecc/' [error] Could not get Let's Encrypt certificate for tokushu.xxxxxx.eu: https://github.com/acmesh-official/acme.sh v2.8.6 [Fri 05 Jun 2020 12:16:03 PM CEST] Create account key ok. [Fri 05 Jun 2020 12:16:03 PM CEST] Registering account [Fri 05 Jun 2020 12:16:04 PM CEST] Registered [Fri 05 Jun 2020 12:16:05 PM CEST] ACCOUNT_THUMBPRINT='6Dckd7KQQrw3m8i9ygIeg_q7IQV5TRUNnKO2UgGoHOI' [Fri 05 Jun 2020 12:16:05 PM CEST] Creating domain key [Fri 05 Jun 2020 12:16:05 PM CEST] The domain key is here: /root/.acme.sh/tokushu.xxxxxx.eu_ecc/tokushu.xxxxxx.eu.key [Fri 05 Jun 2020 12:16:05 PM CEST] Multi domain='DNS:tokushu.xxxxxx.eu,DNS:ssl.smtp.tokushu.xxxxxx.eu,DNS:smtp.tokushu.xxxxxx.eu,DNS:smtps.tokushu.xxxxxx.eu,DNS:pop3.tokushu.xxxxxx.eu,DNS:pop3s.tokushu.xxxxxx.eu,DNS:imaps.tokushu.xxxxxx.eu,DNS:imap.tokushu.xxxxxx.eu,DNS:mail.tokushu.xxxxxx.eu,DNS:ssl.tokushu.xxxxxx.eu' [Fri 05 Jun 2020 12:16:05 PM CEST] Getting domain auth token for each domain [error] Could not find file 'tokushu.xxxxxx.eu.cer' in '/root/.acme.sh/tokushu.xxxxxx.eu_ecc/' [error] Could not find file 'ca.cer' in '/root/.acme.sh/tokushu.xxxxxx.eu_ecc/' [error] Could not find file 'fullchain.cer' in '/root/.acme.sh/tokushu.xxxxxx.eu_ecc/' [error] Could not get Let's Encrypt certificate for tokushu.xxxxxx.eu: [information] Let's Encrypt certificates have been updated [information] nginx::createIpPort: creating ip/port settings for [2a01:4f8:10a:1ca0::2]:80 [information] nginx::createIpPort: creating ip/port settings for [2a01:4f8:10a:1ca0::2]:443 [debug] System certificate file "" does not seem to exist. Disabling SSL-vhost for "tokushu.xxxxxx.eu" [debug] System certificate file "" does not seem to exist. Disabling SSL-vhost for "tokushu.xxxxxx.eu" [information] nginx::createIpPort: creating ip/port settings for 88.99.92.97:80 [information] nginx::createIpPort: creating ip/port settings for 88.99.92.97:443 [debug] System certificate file "" does not seem to exist. Disabling SSL-vhost for "tokushu.xxxxxx.eu" [debug] System certificate file "" does not seem to exist. Disabling SSL-vhost for "tokushu.xxxxxx.eu" [information] nginx::writeConfigs: rebuilding /etc/nginx/sites-enabled/ [information] Froxlor\Cron\Http\NginxFcgi::reload: running service php7.4-fpm restart [information] Froxlor\Cron\Http\NginxFcgi::reload: reloading Froxlor\Cron\Http\NginxFcgi Job for nginx.service failed. See "systemctl status nginx.service" and "journalctl -xe" for details. [notice] Creating passwd file [notice] Writing 2 entries to passwd file [notice] Succesfully wrote passwd file [notice] Creating group file [notice] Writing 1 entries to group file [notice] Succesfully wrote group file [notice] Creating shadow file [notice] Writing 2 entries to shadow file [notice] Succesfully wrote shadow file [notice] Checking system's last guid
  10. das sind die einzigen dateien die im ordner vorhanden sind.
  11. na ja, aber /etc/ssl/froxlor-custom ist immer noch leer, so lange er da die certs nicht erstellt. geht dies leider halt nicht.
  12. Leider noch nicht. [error] Could not find file 'tokushu.xxxxxx.eu.cer' in '/root/.acme.sh/tokushu.xxxxxx.eu_ecc/' [error] Could not find file 'ca.cer' in '/root/.acme.sh/tokushu.xxxxxx.eu_ecc/' [error] Could not find file 'fullchain.cer' in '/root/.acme.sh/tokushu.xxxxxx.eu_ecc/' [error] Could not get Let's Encrypt certificate for tokushu.xxxxxx.eu: nginx: [emerg] no "ssl_certificate" is defined for the "listen ... ssl" directive in /etc/nginx/sites-enabled/10_froxlor_ipandport_xxxxxxxx.443.conf:5 ich probiere gleich mal, wenn ich frox eine andere sub domain zuweise, ob dies geht.
  13. Ja, aber auch das Costum Ordner keine dateien vorhanden sind, verstehe ich irgendwie nicht., für domains erstellt er die. nur für die froxlor domain nicht, aber manuel ein cert erstellen geht ohne probleme. Die Domain für Froxlor, ist zwar nur eine Sub-Domain, aber die hat bisher noch nie probleme gemacht.
  14. irgendwie suckt die acme.sh immer noch bei mir ... bekomme wieder den fehler "[error] Could not find file 'xxxxxxxxx.cer' in '/root/.acme.sh/xxxxxxxxx_ecc/_ecc/'" nginx meckert auch wegen, "nginx: [emerg] no "ssl_certificate" is defined for the "listen ... ssl" directive in "/etc/nginx/sites-enabled/10_froxlor_ipandport_xxxxxxxxxx.conf:5" da keine Dateien unter "/etc/ssl/froxlor-custom" vorhanden sind. vorhande dateien im acme ordner: ~/.acme.sh/xxxxxxxxx_ecc # ls xxxxxxxxx.conf xxxxxxxxx.csr xxxxxxxxx.csr.conf xxxxxxxxx.key aktuelle git vers.
  15. merke ich mir das nächste mal und erwähne dann git-stand eine Warnung spuckt er aber noch aus, habe ich gerade gesehen. [warning] ECC certificates activated but found only non-ecc file [warning] ECC certificates activated but found only non-ecc file [warning] ECC certificates activated but found only non-ecc file [warning] ECC certificates activated but found only non-ecc file [warning] ECC certificates activated but found only non-ecc file Aber let's läuft sonst jetzt wieder.
×
×
  • Create New...