Jump to content
Froxlor Forum
  • 0
MeinerEiner

Let's Encrypt not working any longer

Question

Hello,

 

we have upgraded the systems to 0.10.15. Now lets encrypt is not working anymore for domains. Previous version 0.10.13 works well.

I get this error from lets encrypt:

{
  "type": "urn:ietf:params:acme:error:malformed",
  "detail": "Method not allowed",
  "status": 405
}

[information] TasksCron: Searching for tasks to do
[information] TasksCron: Task10 started - setting filesystem quota
[information] Running Let's Encrypt cronjob prior to regenerating webserver config files
[information] Requesting/renewing Let's Encrypt certificates
[information] Creating certificate for xxxxx.net
[information] Adding SAN entry: xxxxx.net
[information] Adding SAN entry: www.xxxxx.net
[information] Checking for LetsEncrypt client upgrades before renewing certificates:
[Tue Apr 28 11:31:18 CEST 2020] Already uptodate!
[Tue Apr 28 11:31:18 CEST 2020] Upgrade success!
[Tue Apr 28 11:31:18 CEST 2020] Removing cron job
[debug] https://github.com/acmesh-official/acme.sh
v2.8.6
[Tue Apr 28 11:31:19 CEST 2020] Creating domain key
[Tue Apr 28 11:31:22 CEST 2020] The domain key is here: /root/.acme.sh/xxxxx.net/xxxxx.net.key
[Tue Apr 28 11:31:22 CEST 2020] Multi domain='DNS:xxxxx.net,DNS:www.xxxxx.net'
[Tue Apr 28 11:31:22 CEST 2020] Getting domain auth token for each domain
[Tue Apr 28 11:31:25 CEST 2020] Getting webroot for domain='xxxxx.net'
[Tue Apr 28 11:31:25 CEST 2020] Getting webroot for domain='www.xxxxx.net'
[Tue Apr 28 11:31:25 CEST 2020] Verifying: xxxxx.net
fqIIDl1N0TVk25kM3t8VF7NR-dFV1jUl1XF358An8K0.4E3VCTFsySjUrqnCg0ooULx-3kbdPBygi0aWkvg5Gd8
[error] Could not get Let's Encrypt certificate for xxxxx.net:
https://github.com/acmesh-official/acme.sh
v2.8.6
[Tue Apr 28 11:31:19 CEST 2020] Creating domain key
[Tue Apr 28 11:31:22 CEST 2020] The domain key is here: /root/.acme.sh/xxxxx.net/xxxxx.net.key
[Tue Apr 28 11:31:22 CEST 2020] Multi domain='DNS:xxxxx.net,DNS:www.xxxxx.net'
[Tue Apr 28 11:31:22 CEST 2020] Getting domain auth token for each domain
[Tue Apr 28 11:31:25 CEST 2020] Getting webroot for domain='xxxxx.net'
[Tue Apr 28 11:31:25 CEST 2020] Getting webroot for domain='www.xxxxx.net'
[Tue Apr 28 11:31:25 CEST 2020] Verifying: xxxxx.net
fqIIDl1N0TVk25kM3t8VF7NR-dFV1jUl1XF358An8K0.4E3VCTFsySjUrqnCg0ooULx-3kbdPBygi0aWkvg5Gd8

 

 

Settings:

SSL Let's Encrypt enabled with 8192 key. 

 

Kind regards,

Daniel

Share this post


Link to post
Share on other sites

18 answers to this question

Recommended Posts

  • 0

Please provide full output of cronjob with --force --debug 

The error is a acme API response, so it might be acme.sh related, hence the need for the debug output

Share this post


Link to post
Share on other sites
  • 0

Auszug aus --force --debug:

[Tue Apr 28 13:01:41 CEST 2020] Lets find script dir.
[Tue Apr 28 13:01:41 CEST 2020] _SCRIPT_='/root/.acme.sh/acme.sh'
[Tue Apr 28 13:01:41 CEST 2020] _script='/root/.acme.sh/acme.sh'
[Tue Apr 28 13:01:41 CEST 2020] _script_home='/root/.acme.sh'
[Tue Apr 28 13:01:41 CEST 2020] Using config home:/root/.acme.sh
[Tue Apr 28 13:01:41 CEST 2020] Using server: https://acme-v02.api.letsencrypt.org/directory
[Tue Apr 28 13:01:41 CEST 2020] Running cmd: issue
[Tue Apr 28 13:01:41 CEST 2020] _main_domain='xxxxxx.net'
[Tue Apr 28 13:01:41 CEST 2020] _alt_domains='www.xxxxxx.net'
[Tue Apr 28 13:01:41 CEST 2020] Using config home:/root/.acme.sh
[Tue Apr 28 13:01:41 CEST 2020] ACME_DIRECTORY='https://acme-v02.api.letsencrypt.org/directory'
[Tue Apr 28 13:01:41 CEST 2020] DOMAIN_PATH='/root/.acme.sh/xxxxxx.net'
[Tue Apr 28 13:01:41 CEST 2020] Using ACME_DIRECTORY: https://acme-v02.api.letsencrypt.org/directory
[Tue Apr 28 13:01:41 CEST 2020] _init api for server: https://acme-v02.api.letsencrypt.org/directory
[Tue Apr 28 13:01:41 CEST 2020] GET
[Tue Apr 28 13:01:41 CEST 2020] url='https://acme-v02.api.letsencrypt.org/directory'
[Tue Apr 28 13:01:41 CEST 2020] timeout=
[Tue Apr 28 13:01:41 CEST 2020] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header  -g '
[Tue Apr 28 13:01:42 CEST 2020] ret='0'
[Tue Apr 28 13:01:42 CEST 2020] ACME_KEY_CHANGE='https://acme-v02.api.letsencrypt.org/acme/key-change'
[Tue Apr 28 13:01:42 CEST 2020] ACME_NEW_AUTHZ
[Tue Apr 28 13:01:42 CEST 2020] ACME_NEW_ORDER='https://acme-v02.api.letsencrypt.org/acme/new-order'
[Tue Apr 28 13:01:42 CEST 2020] ACME_NEW_ACCOUNT='https://acme-v02.api.letsencrypt.org/acme/new-acct'
[Tue Apr 28 13:01:42 CEST 2020] ACME_REVOKE_CERT='https://acme-v02.api.letsencrypt.org/acme/revoke-cert'
[Tue Apr 28 13:01:42 CEST 2020] ACME_AGREEMENT='https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf'
[Tue Apr 28 13:01:42 CEST 2020] ACME_NEW_NONCE='https://acme-v02.api.letsencrypt.org/acme/new-nonce'
[Tue Apr 28 13:01:42 CEST 2020] ACME_VERSION='2'
[Tue Apr 28 13:01:42 CEST 2020] Le_NextRenewTime
[Tue Apr 28 13:01:42 CEST 2020] _on_before_issue
[Tue Apr 28 13:01:42 CEST 2020] _chk_main_domain='xxxxxx.net'
[Tue Apr 28 13:01:42 CEST 2020] _chk_alt_domains='www.xxxxxx.net'
[Tue Apr 28 13:01:42 CEST 2020] Le_LocalAddress
[Tue Apr 28 13:01:42 CEST 2020] d='xxxxxx.net'
[Tue Apr 28 13:01:42 CEST 2020] Check for domain='xxxxxx.net'
[Tue Apr 28 13:01:42 CEST 2020] _currentRoot='/var/www/froxlor/'
[Tue Apr 28 13:01:42 CEST 2020] d='www.xxxxxx.net'
[Tue Apr 28 13:01:42 CEST 2020] Check for domain='www.xxxxxx.net'
[Tue Apr 28 13:01:42 CEST 2020] _currentRoot='/var/www/froxlor/'
[Tue Apr 28 13:01:42 CEST 2020] d
[Tue Apr 28 13:01:42 CEST 2020] _saved_account_key_hash is not changed, skip register account.
[Tue Apr 28 13:01:42 CEST 2020] Read key length:8192
[Tue Apr 28 13:01:42 CEST 2020] Using config home:/root/.acme.sh
[Tue Apr 28 13:01:42 CEST 2020] ACME_DIRECTORY='https://acme-v02.api.letsencrypt.org/directory'
[Tue Apr 28 13:01:42 CEST 2020] Use length 8192
[Tue Apr 28 13:01:42 CEST 2020] Using RSA: 8192
[Tue Apr 28 13:01:46 CEST 2020] _createcsr
[Tue Apr 28 13:01:46 CEST 2020] d='www.xxxxxx.net'
[Tue Apr 28 13:01:46 CEST 2020] d
[Tue Apr 28 13:01:46 CEST 2020] url='https://acme-v02.api.letsencrypt.org/acme/new-order'
[Tue Apr 28 13:01:46 CEST 2020] payload='{"identifiers": [{"type":"dns","value":"xxxxxx.net"},{"type":"dns","value":"www.xxxxxx.net"}]}'
[Tue Apr 28 13:01:46 CEST 2020] RSA key
[Tue Apr 28 13:01:46 CEST 2020] HEAD
[Tue Apr 28 13:01:46 CEST 2020] _post_url='https://acme-v02.api.letsencrypt.org/acme/new-nonce'
[Tue Apr 28 13:01:46 CEST 2020] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header  -g  -I  '
[Tue Apr 28 13:01:47 CEST 2020] _ret='0'
[Tue Apr 28 13:01:47 CEST 2020] POST
[Tue Apr 28 13:01:47 CEST 2020] _post_url='https://acme-v02.api.letsencrypt.org/acme/new-order'
[Tue Apr 28 13:01:47 CEST 2020] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header  -g '
[Tue Apr 28 13:01:47 CEST 2020] _ret='0'
[Tue Apr 28 13:01:47 CEST 2020] code='429'
[Tue Apr 28 13:01:47 CEST 2020] Le_LinkOrder
[Tue Apr 28 13:01:47 CEST 2020] Le_OrderFinalize
[Tue Apr 28 13:01:47 CEST 2020] Create new order error. Le_OrderFinalize not found. {
  "type": "urn:ietf:params:acme:error:rateLimited",
  "detail": "Error creating new order :: too many failed authorizations recently: see https://letsencrypt.org/docs/rate-limits/",
  "status": 429
}
[Tue Apr 28 13:01:48 CEST 2020] pid
[Tue Apr 28 13:01:48 CEST 2020] No need to restore nginx, skip.
[Tue Apr 28 13:01:48 CEST 2020] _clearupdns
[Tue Apr 28 13:01:48 CEST 2020] dns_entries
[Tue Apr 28 13:01:48 CEST 2020] skip dns.
[Tue Apr 28 13:01:48 CEST 2020] _on_issue_err
[Tue Apr 28 13:01:48 CEST 2020] Please add '--debug' or '--log' to check more details.
[Tue Apr 28 13:01:48 CEST 2020] See: https://github.com/acmesh-official/acme.sh/wiki/How-to-debug-acme.sh
[Tue Apr 28 13:01:48 CEST 2020] socat doesn't exists.
[Tue Apr 28 13:01:48 CEST 2020] Diagnosis versions:
openssl:openssl
OpenSSL 1.1.1d  10 Sep 2019
apache:
apache doesn't exists.
nginx:
nginx doesn't exists.
socat:
 

Share this post


Link to post
Share on other sites
  • 0

I Still wait 4h to get new chance to request let's encrypt...

There are many domains that needed to be renewed, but the failed requests matches the limit. So I decided to set let's encrypt job to once a day.

Share this post


Link to post
Share on other sites
  • 0
14 minutes ago, MeinerEiner said:

Hello,

since the update php errors are thrown (php7.3fpm)

 

[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16252 said into stderr: "ERROR: Unable to set php_value 'suhosin.simulation'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16252 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_sybase'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16252 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_runtime'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16252 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_gpc'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16252 said into stderr: "ERROR: Unable to set php_value 'asp_tags'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16252 said into stderr: "ERROR: Unable to set php_admin_value 'gpc_order'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16252 said into stderr: "ERROR: Unable to set php_admin_value 'allow_call_time_pass_reference'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16255 said into stderr: "ERROR: Unable to set php_value 'suhosin.simulation'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16255 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_sybase'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16255 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_runtime'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16255 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_gpc'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16255 said into stderr: "ERROR: Unable to set php_value 'asp_tags'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16255 said into stderr: "ERROR: Unable to set php_admin_value 'gpc_order'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16255 said into stderr: "ERROR: Unable to set php_admin_value 'allow_call_time_pass_reference'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16253 said into stderr: "ERROR: Unable to set php_value 'suhosin.simulation'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16253 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_sybase'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16253 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_runtime'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16253 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_gpc'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16253 said into stderr: "ERROR: Unable to set php_value 'asp_tags'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16253 said into stderr: "ERROR: Unable to set php_admin_value 'gpc_order'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16253 said into stderr: "ERROR: Unable to set php_admin_value 'allow_call_time_pass_reference'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16261 said into stderr: "ERROR: Unable to set php_value 'suhosin.simulation'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16261 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_sybase'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16261 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_runtime'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16261 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_gpc'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16261 said into stderr: "ERROR: Unable to set php_value 'asp_tags'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16261 said into stderr: "ERROR: Unable to set php_admin_value 'gpc_order'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16261 said into stderr: "ERROR: Unable to set php_admin_value 'allow_call_time_pass_reference'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16258 said into stderr: "ERROR: Unable to set php_value 'suhosin.simulation'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16258 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_sybase'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16258 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_runtime'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16258 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_gpc'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16258 said into stderr: "ERROR: Unable to set php_value 'asp_tags'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16258 said into stderr: "ERROR: Unable to set php_admin_value 'gpc_order'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16258 said into stderr: "ERROR: Unable to set php_admin_value 'allow_call_time_pass_reference'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16259 said into stderr: "ERROR: Unable to set php_value 'suhosin.simulation'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16259 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_sybase'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16259 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_runtime'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16259 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_gpc'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16259 said into stderr: "ERROR: Unable to set php_value 'asp_tags'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16259 said into stderr: "ERROR: Unable to set php_admin_value 'gpc_order'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16259 said into stderr: "ERROR: Unable to set php_admin_value 'allow_call_time_pass_reference'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16257 said into stderr: "ERROR: Unable to set php_value 'suhosin.simulation'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16257 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_sybase'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16257 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_runtime'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16257 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_gpc'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16257 said into stderr: "ERROR: Unable to set php_value 'asp_tags'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16257 said into stderr: "ERROR: Unable to set php_admin_value 'gpc_order'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16257 said into stderr: "ERROR: Unable to set php_admin_value 'allow_call_time_pass_reference'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16260 said into stderr: "ERROR: Unable to set php_value 'suhosin.simulation'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16260 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_sybase'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16260 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_runtime'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16260 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_gpc'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16260 said into stderr: "ERROR: Unable to set php_value 'asp_tags'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16260 said into stderr: "ERROR: Unable to set php_admin_value 'gpc_order'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16260 said into stderr: "ERROR: Unable to set php_admin_value 'allow_call_time_pass_reference'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16256 said into stderr: "ERROR: Unable to set php_value 'suhosin.simulation'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16256 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_sybase'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16256 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_runtime'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16256 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_gpc'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16256 said into stderr: "ERROR: Unable to set php_value 'asp_tags'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16256 said into stderr: "ERROR: Unable to set php_admin_value 'gpc_order'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16256 said into stderr: "ERROR: Unable to set php_admin_value 'allow_call_time_pass_reference'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16262 said into stderr: "ERROR: Unable to set php_value 'suhosin.simulation'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16262 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_sybase'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16262 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_runtime'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16262 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_gpc'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16262 said into stderr: "ERROR: Unable to set php_value 'asp_tags'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16262 said into stderr: "ERROR: Unable to set php_admin_value 'gpc_order'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16262 said into stderr: "ERROR: Unable to set php_admin_value 'allow_call_time_pass_reference'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16263 said into stderr: "ERROR: Unable to set php_value 'suhosin.simulation'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16263 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_sybase'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16263 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_runtime'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16263 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_gpc'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16263 said into stderr: "ERROR: Unable to set php_value 'asp_tags'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16263 said into stderr: "ERROR: Unable to set php_admin_value 'gpc_order'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16263 said into stderr: "ERROR: Unable to set php_admin_value 'allow_call_time_pass_reference'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16254 said into stderr: "ERROR: Unable to set php_value 'suhosin.simulation'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16254 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_sybase'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16254 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_runtime'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16254 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_gpc'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16254 said into stderr: "ERROR: Unable to set php_value 'asp_tags'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16254 said into stderr: "ERROR: Unable to set php_admin_value 'gpc_order'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16254 said into stderr: "ERROR: Unable to set php_admin_value 'allow_call_time_pass_reference'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16264 said into stderr: "ERROR: Unable to set php_value 'suhosin.simulation'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16264 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_sybase'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16264 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_runtime'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16264 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_gpc'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16264 said into stderr: "ERROR: Unable to set php_value 'asp_tags'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16264 said into stderr: "ERROR: Unable to set php_admin_value 'gpc_order'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16264 said into stderr: "ERROR: Unable to set php_admin_value 'allow_call_time_pass_reference'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16267 said into stderr: "ERROR: Unable to set php_value 'suhosin.simulation'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16267 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_sybase'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16267 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_runtime'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16267 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_gpc'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16267 said into stderr: "ERROR: Unable to set php_value 'asp_tags'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16267 said into stderr: "ERROR: Unable to set php_admin_value 'gpc_order'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16267 said into stderr: "ERROR: Unable to set php_admin_value 'allow_call_time_pass_reference'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16268 said into stderr: "ERROR: Unable to set php_value 'suhosin.simulation'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16268 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_sybase'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16268 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_runtime'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16268 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_gpc'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16268 said into stderr: "ERROR: Unable to set php_value 'asp_tags'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16268 said into stderr: "ERROR: Unable to set php_admin_value 'gpc_order'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16268 said into stderr: "ERROR: Unable to set php_admin_value 'allow_call_time_pass_reference'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16266 said into stderr: "ERROR: Unable to set php_value 'suhosin.simulation'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16266 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_sybase'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16266 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_runtime'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16266 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_gpc'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16266 said into stderr: "ERROR: Unable to set php_value 'asp_tags'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16266 said into stderr: "ERROR: Unable to set php_admin_value 'gpc_order'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16266 said into stderr: "ERROR: Unable to set php_admin_value 'allow_call_time_pass_reference'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16265 said into stderr: "ERROR: Unable to set php_value 'suhosin.simulation'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16265 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_sybase'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16265 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_runtime'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16265 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_gpc'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16265 said into stderr: "ERROR: Unable to set php_value 'asp_tags'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16265 said into stderr: "ERROR: Unable to set php_admin_value 'gpc_order'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16265 said into stderr: "ERROR: Unable to set php_admin_value 'allow_call_time_pass_reference'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16269 said into stderr: "ERROR: Unable to set php_value 'suhosin.simulation'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16269 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_sybase'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16269 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_runtime'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16269 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_gpc'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16269 said into stderr: "ERROR: Unable to set php_value 'asp_tags'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16269 said into stderr: "ERROR: Unable to set php_admin_value 'gpc_order'"
[28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16269 said into stderr: "ERROR: Unable to set php_admin_value 'allow_call_time_pass_reference'"
 

non standard php.ini - for example "allow_call_time_pass_reference" is not a value, it's On|Off, hence you should put that to php_admin_flag - also, this particular setting has been removed in PHP 5.4.0.

Share this post


Link to post
Share on other sites
  • 0

Ok php error fixed, by clicking ip and ports, save each ip and after that rebuild config.

Seems something strange happens to vHost-Files

Share this post


Link to post
Share on other sites
  • 0
Just now, MeinerEiner said:

Ok php error fixed, by clicking ip and ports, save each ip and after that rebuild config.

That has in no way anything to do with saving ip's and ports....

1 minute ago, MeinerEiner said:

Seems something strange happens to vHost-Files

Like? "strange" can be a lot of things. Please explain and show, it's hard to help that way

Share this post


Link to post
Share on other sites
  • 0

actual let's encrypt report:


php /var/www/froxlor/scripts/froxlor_master_cronjob.php --force --debug
[information] TasksCron: Searching for tasks to do
[information] TasksCron: Task10 started - setting filesystem quota
[information] Running Let's Encrypt cronjob prior to regenerating webserver config files
[information] Requesting/renewing Let's Encrypt certificates
[information] Creating certificate for xxxxxx.net
[information] Adding SAN entry: xxxxxx.net
[information] Adding SAN entry: www.xxxxxx.net
[information] Checking for LetsEncrypt client upgrades before renewing certificates:
[Tue Apr 28 13:49:23 CEST 2020] Already uptodate!
[Tue Apr 28 13:49:23 CEST 2020] Upgrade success!
[Tue Apr 28 13:49:24 CEST 2020] Removing cron job
[Tue Apr 28 13:49:24 CEST 2020] Lets find script dir.
[Tue Apr 28 13:49:24 CEST 2020] _SCRIPT_='/root/.acme.sh/acme.sh'
[Tue Apr 28 13:49:24 CEST 2020] _script='/root/.acme.sh/acme.sh'
[Tue Apr 28 13:49:24 CEST 2020] _script_home='/root/.acme.sh'
[Tue Apr 28 13:49:24 CEST 2020] Using config home:/root/.acme.sh
[Tue Apr 28 13:49:24 CEST 2020] Using server: https://acme-v02.api.letsencrypt.org/directory
[Tue Apr 28 13:49:24 CEST 2020] Running cmd: issue
[Tue Apr 28 13:49:24 CEST 2020] _main_domain='xxxxxx.net'
[Tue Apr 28 13:49:24 CEST 2020] _alt_domains='www.xxxxxx.net'
[Tue Apr 28 13:49:24 CEST 2020] Using config home:/root/.acme.sh
[Tue Apr 28 13:49:24 CEST 2020] ACME_DIRECTORY='https://acme-v02.api.letsencrypt.org/directory'
[Tue Apr 28 13:49:24 CEST 2020] DOMAIN_PATH='/root/.acme.sh/xxxxxx.net'
[Tue Apr 28 13:49:24 CEST 2020] Using ACME_DIRECTORY: https://acme-v02.api.letsencrypt.org/directory
[Tue Apr 28 13:49:24 CEST 2020] _init api for server: https://acme-v02.api.letsencrypt.org/directory
[Tue Apr 28 13:49:24 CEST 2020] GET
[Tue Apr 28 13:49:24 CEST 2020] url='https://acme-v02.api.letsencrypt.org/directory'
[Tue Apr 28 13:49:24 CEST 2020] timeout=
[Tue Apr 28 13:49:24 CEST 2020] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header  -g '
[Tue Apr 28 13:49:24 CEST 2020] ret='0'
[Tue Apr 28 13:49:24 CEST 2020] ACME_KEY_CHANGE='https://acme-v02.api.letsencrypt.org/acme/key-change'
[Tue Apr 28 13:49:24 CEST 2020] ACME_NEW_AUTHZ
[Tue Apr 28 13:49:24 CEST 2020] ACME_NEW_ORDER='https://acme-v02.api.letsencrypt.org/acme/new-order'
[Tue Apr 28 13:49:24 CEST 2020] ACME_NEW_ACCOUNT='https://acme-v02.api.letsencrypt.org/acme/new-acct'
[Tue Apr 28 13:49:24 CEST 2020] ACME_REVOKE_CERT='https://acme-v02.api.letsencrypt.org/acme/revoke-cert'
[Tue Apr 28 13:49:24 CEST 2020] ACME_AGREEMENT='https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf'
[Tue Apr 28 13:49:24 CEST 2020] ACME_NEW_NONCE='https://acme-v02.api.letsencrypt.org/acme/new-nonce'
[Tue Apr 28 13:49:24 CEST 2020] ACME_VERSION='2'
[Tue Apr 28 13:49:24 CEST 2020] _on_before_issue
[Tue Apr 28 13:49:24 CEST 2020] _chk_main_domain='xxxxxx.net'
[Tue Apr 28 13:49:24 CEST 2020] _chk_alt_domains='www.xxxxxx.net'
[Tue Apr 28 13:49:24 CEST 2020] Le_LocalAddress
[Tue Apr 28 13:49:24 CEST 2020] d='xxxxxx.net'
[Tue Apr 28 13:49:24 CEST 2020] Check for domain='xxxxxx.net'
[Tue Apr 28 13:49:24 CEST 2020] _currentRoot='/var/www/froxlor/'
[Tue Apr 28 13:49:24 CEST 2020] d='www.xxxxxx.net'
[Tue Apr 28 13:49:24 CEST 2020] Check for domain='www.xxxxxx.net'
[Tue Apr 28 13:49:24 CEST 2020] _currentRoot='/var/www/froxlor/'
[Tue Apr 28 13:49:24 CEST 2020] d
[Tue Apr 28 13:49:24 CEST 2020] _saved_account_key_hash is not changed, skip register account.
[Tue Apr 28 13:49:24 CEST 2020] Read key length:
[Tue Apr 28 13:49:24 CEST 2020] Using config home:/root/.acme.sh
[Tue Apr 28 13:49:24 CEST 2020] ACME_DIRECTORY='https://acme-v02.api.letsencrypt.org/directory'
[Tue Apr 28 13:49:24 CEST 2020] Use length 8192
[Tue Apr 28 13:49:24 CEST 2020] Using RSA: 8192
[Tue Apr 28 13:49:28 CEST 2020] _createcsr
[Tue Apr 28 13:49:28 CEST 2020] d='www.xxxxxx.net'
[Tue Apr 28 13:49:28 CEST 2020] d
[Tue Apr 28 13:49:28 CEST 2020] url='https://acme-v02.api.letsencrypt.org/acme/new-order'
[Tue Apr 28 13:49:28 CEST 2020] payload='{"identifiers": [{"type":"dns","value":"xxxxxx.net"},{"type":"dns","value":"www.xxxxxx.net"}]}'
[Tue Apr 28 13:49:28 CEST 2020] RSA key
[Tue Apr 28 13:49:28 CEST 2020] HEAD
[Tue Apr 28 13:49:28 CEST 2020] _post_url='https://acme-v02.api.letsencrypt.org/acme/new-nonce'
[Tue Apr 28 13:49:28 CEST 2020] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header  -g  -I  '
[Tue Apr 28 13:49:29 CEST 2020] _ret='0'
[Tue Apr 28 13:49:29 CEST 2020] POST
[Tue Apr 28 13:49:29 CEST 2020] _post_url='https://acme-v02.api.letsencrypt.org/acme/new-order'
[Tue Apr 28 13:49:29 CEST 2020] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header  -g '
[Tue Apr 28 13:49:30 CEST 2020] _ret='0'
[Tue Apr 28 13:49:30 CEST 2020] code='201'
[Tue Apr 28 13:49:30 CEST 2020] Le_LinkOrder='https://acme-v02.api.letsencrypt.org/acme/order/79147307/3162587417'
[Tue Apr 28 13:49:30 CEST 2020] Le_OrderFinalize='https://acme-v02.api.letsencrypt.org/acme/finalize/79147307/3162587417'
[Tue Apr 28 13:49:30 CEST 2020] url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/4232150773'
[Tue Apr 28 13:49:30 CEST 2020] payload
[Tue Apr 28 13:49:30 CEST 2020] POST
[Tue Apr 28 13:49:30 CEST 2020] _post_url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/4232150773'
[Tue Apr 28 13:49:30 CEST 2020] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header  -g '
[Tue Apr 28 13:49:30 CEST 2020] _ret='0'
[Tue Apr 28 13:49:30 CEST 2020] code='200'
[Tue Apr 28 13:49:30 CEST 2020] url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/4232150774'
[Tue Apr 28 13:49:30 CEST 2020] payload
[Tue Apr 28 13:49:31 CEST 2020] POST
[Tue Apr 28 13:49:31 CEST 2020] _post_url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/4232150774'
[Tue Apr 28 13:49:31 CEST 2020] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header  -g '
[Tue Apr 28 13:49:31 CEST 2020] _ret='0'
[Tue Apr 28 13:49:31 CEST 2020] code='200'
[Tue Apr 28 13:49:31 CEST 2020] d='xxxxxx.net'
[Tue Apr 28 13:49:31 CEST 2020] _w='/var/www/froxlor/'
[Tue Apr 28 13:49:31 CEST 2020] _currentRoot='/var/www/froxlor/'
[Tue Apr 28 13:49:31 CEST 2020] entry='"type":"http-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/4232150773/YwkLNw","token":"f7GaM0d-Nbsm_tgb5l71q_gsjFQzsZJaCSa1IE1MroA"'
[Tue Apr 28 13:49:31 CEST 2020] token='f7GaM0d-Nbsm_tgb5l71q_gsjFQzsZJaCSa1IE1MroA'
[Tue Apr 28 13:49:31 CEST 2020] uri='https://acme-v02.api.letsencrypt.org/acme/chall-v3/4232150773/YwkLNw'
[Tue Apr 28 13:49:31 CEST 2020] keyauthorization='f7GaM0d-Nbsm_tgb5l71q_gsjFQzsZJaCSa1IE1MroA._0UBaqs6gYd8N7BPCo6VAUJnXDQV1-V4eQyRKh1rT3o'
[Tue Apr 28 13:49:31 CEST 2020] dvlist='xxxxxx.net#f7GaM0d-Nbsm_tgb5l71q_gsjFQzsZJaCSa1IE1MroA._0UBaqs6gYd8N7BPCo6VAUJnXDQV1-V4eQyRKh1rT3o#https://acme-v02.api.letsencrypt.org/acme/chall-v3/4232150773/YwkLNw#http-01#/var/www/froxlor/'
[Tue Apr 28 13:49:31 CEST 2020] d='www.xxxxxx.net'
[Tue Apr 28 13:49:31 CEST 2020] _w='/var/www/froxlor/'
[Tue Apr 28 13:49:31 CEST 2020] _currentRoot='/var/www/froxlor/'
[Tue Apr 28 13:49:31 CEST 2020] entry='"type":"http-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/4232150774/iJIjTA","token":"oi8ltqdZue00Em0kmQ57hnUJB0JQ30RjtoiaWP5q8WI"'
[Tue Apr 28 13:49:31 CEST 2020] token='oi8ltqdZue00Em0kmQ57hnUJB0JQ30RjtoiaWP5q8WI'
[Tue Apr 28 13:49:31 CEST 2020] uri='https://acme-v02.api.letsencrypt.org/acme/chall-v3/4232150774/iJIjTA'
[Tue Apr 28 13:49:31 CEST 2020] keyauthorization='oi8ltqdZue00Em0kmQ57hnUJB0JQ30RjtoiaWP5q8WI._0UBaqs6gYd8N7BPCo6VAUJnXDQV1-V4eQyRKh1rT3o'
[Tue Apr 28 13:49:31 CEST 2020] dvlist='www.xxxxxx.net#oi8ltqdZue00Em0kmQ57hnUJB0JQ30RjtoiaWP5q8WI._0UBaqs6gYd8N7BPCo6VAUJnXDQV1-V4eQyRKh1rT3o#https://acme-v02.api.letsencrypt.org/acme/chall-v3/4232150774/iJIjTA#http-01#/var/www/froxlor/'
[Tue Apr 28 13:49:31 CEST 2020] d
[Tue Apr 28 13:49:31 CEST 2020] vlist='xxxxxx.net#f7GaM0d-Nbsm_tgb5l71q_gsjFQzsZJaCSa1IE1MroA._0UBaqs6gYd8N7BPCo6VAUJnXDQV1-V4eQyRKh1rT3o#https://acme-v02.api.letsencrypt.org/acme/chall-v3/4232150773/YwkLNw#http-01#/var/www/froxlor/,www.xxxxxx.net#oi8ltqdZue00Em0kmQ57hnUJB0JQ30RjtoiaWP5q8WI._0UBaqs6gYd8N7BPCo6VAUJnXDQV1-V4eQyRKh1rT3o#https://acme-v02.api.letsencrypt.org/acme/chall-v3/4232150774/iJIjTA#http-01#/var/www/froxlor/,'
[Tue Apr 28 13:49:31 CEST 2020] d='xxxxxx.net'
[Tue Apr 28 13:49:31 CEST 2020] d='www.xxxxxx.net'
[Tue Apr 28 13:49:31 CEST 2020] ok, let's start to verify
[Tue Apr 28 13:49:31 CEST 2020] d='xxxxxx.net'
[Tue Apr 28 13:49:31 CEST 2020] keyauthorization='f7GaM0d-Nbsm_tgb5l71q_gsjFQzsZJaCSa1IE1MroA._0UBaqs6gYd8N7BPCo6VAUJnXDQV1-V4eQyRKh1rT3o'
[Tue Apr 28 13:49:31 CEST 2020] uri='https://acme-v02.api.letsencrypt.org/acme/chall-v3/4232150773/YwkLNw'
[Tue Apr 28 13:49:31 CEST 2020] _currentRoot='/var/www/froxlor/'
[Tue Apr 28 13:49:31 CEST 2020] wellknown_path='/var/www/froxlor//.well-known/acme-challenge'
[Tue Apr 28 13:49:31 CEST 2020] writing token:f7GaM0d-Nbsm_tgb5l71q_gsjFQzsZJaCSa1IE1MroA to /var/www/froxlor//.well-known/acme-challenge/f7GaM0d-Nbsm_tgb5l71q_gsjFQzsZJaCSa1IE1MroA
[Tue Apr 28 13:49:31 CEST 2020] Changing owner/group of .well-known to froxlorlocal:froxlorlocal
[Tue Apr 28 13:49:31 CEST 2020] url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/4232150773/YwkLNw'
[Tue Apr 28 13:49:31 CEST 2020] payload='{}'
[Tue Apr 28 13:49:31 CEST 2020] POST
[Tue Apr 28 13:49:31 CEST 2020] _post_url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/4232150773/YwkLNw'
[Tue Apr 28 13:49:31 CEST 2020] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header  -g '
[Tue Apr 28 13:49:32 CEST 2020] _ret='0'
[Tue Apr 28 13:49:32 CEST 2020] code='200'
[Tue Apr 28 13:49:32 CEST 2020] trigger validation code: 200
[Tue Apr 28 13:49:32 CEST 2020] sleep 2 secs to verify
[Tue Apr 28 13:49:34 CEST 2020] checking
[Tue Apr 28 13:49:34 CEST 2020] url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/4232150773/YwkLNw'
[Tue Apr 28 13:49:34 CEST 2020] payload
[Tue Apr 28 13:49:34 CEST 2020] POST
[Tue Apr 28 13:49:34 CEST 2020] _post_url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/4232150773/YwkLNw'
[Tue Apr 28 13:49:34 CEST 2020] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header  -g '
[Tue Apr 28 13:49:35 CEST 2020] _ret='0'
[Tue Apr 28 13:49:35 CEST 2020] code='200'
[Tue Apr 28 13:49:35 CEST 2020] xxxxxx.net:Verify error:The key authorization file from the server did not match this challenge
[Tue Apr 28 13:49:35 CEST 2020] Debug: get token url.
[Tue Apr 28 13:49:35 CEST 2020] GET
[Tue Apr 28 13:49:35 CEST 2020] url='http://xxxxxx.net/.well-known/acme-challenge/f7GaM0d-Nbsm_tgb5l71q_gsjFQzsZJaCSa1IE1MroA'
[Tue Apr 28 13:49:35 CEST 2020] timeout=1
[Tue Apr 28 13:49:35 CEST 2020] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header  -g  --connect-timeout 1'
[Tue Apr 28 13:49:35 CEST 2020] ret='0'
[Tue Apr 28 13:49:35 CEST 2020] Debugging, skip removing: /var/www/froxlor//.well-known/acme-challenge/f7GaM0d-Nbsm_tgb5l71q_gsjFQzsZJaCSa1IE1MroA
[Tue Apr 28 13:49:35 CEST 2020] pid
[Tue Apr 28 13:49:35 CEST 2020] No need to restore nginx, skip.
[Tue Apr 28 13:49:35 CEST 2020] _clearupdns
[Tue Apr 28 13:49:35 CEST 2020] dns_entries
[Tue Apr 28 13:49:35 CEST 2020] skip dns.
[Tue Apr 28 13:49:35 CEST 2020] _on_issue_err
[Tue Apr 28 13:49:35 CEST 2020] Please add '--debug' or '--log' to check more details.
[Tue Apr 28 13:49:35 CEST 2020] See: https://github.com/acmesh-official/acme.sh/wiki/How-to-debug-acme.sh
[Tue Apr 28 13:49:35 CEST 2020] url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/4232150773/YwkLNw'
[Tue Apr 28 13:49:35 CEST 2020] payload='{}'
[Tue Apr 28 13:49:35 CEST 2020] POST
[Tue Apr 28 13:49:35 CEST 2020] _post_url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/4232150773/YwkLNw'
[Tue Apr 28 13:49:35 CEST 2020] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header  -g '
[Tue Apr 28 13:49:35 CEST 2020] _ret='0'
[Tue Apr 28 13:49:35 CEST 2020] code='400'
[Tue Apr 28 13:49:35 CEST 2020] url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/4232150774/iJIjTA'
[Tue Apr 28 13:49:35 CEST 2020] payload='{}'
[Tue Apr 28 13:49:35 CEST 2020] POST
[Tue Apr 28 13:49:35 CEST 2020] _post_url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/4232150774/iJIjTA'
[Tue Apr 28 13:49:35 CEST 2020] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header  -g '
[Tue Apr 28 13:49:36 CEST 2020] _ret='0'
[Tue Apr 28 13:49:36 CEST 2020] code='200'
[Tue Apr 28 13:49:36 CEST 2020] socat doesn't exists.
[Tue Apr 28 13:49:36 CEST 2020] Diagnosis versions:
openssl:openssl
OpenSSL 1.1.1d  10 Sep 2019
apache:
apache doesn't exists.
nginx:
nginx doesn't exists.
socat:
[debug] https://github.com/acmesh-official/acme.sh
v2.8.6
[Tue Apr 28 13:49:24 CEST 2020] Creating domain key
[Tue Apr 28 13:49:28 CEST 2020] The domain key is here: /root/.acme.sh/xxxxxx.net/xxxxxx.net.key
[Tue Apr 28 13:49:28 CEST 2020] Multi domain='DNS:xxxxxx.net,DNS:www.xxxxxx.net'
[Tue Apr 28 13:49:28 CEST 2020] Getting domain auth token for each domain
[Tue Apr 28 13:49:31 CEST 2020] Getting webroot for domain='xxxxxx.net'
[Tue Apr 28 13:49:31 CEST 2020] Getting webroot for domain='www.xxxxxx.net'
[Tue Apr 28 13:49:31 CEST 2020] Verifying: xxxxxx.net
f7GaM0d-Nbsm_tgb5l71q_gsjFQzsZJaCSa1IE1MroA.4E3VCTFsySjUrqnCg0ooULx-3kbdPBygi0aWkvg5Gd8
[error] Could not get Let's Encrypt certificate for xxxxxx.net:
https://github.com/acmesh-official/acme.sh
v2.8.6
[Tue Apr 28 13:49:24 CEST 2020] Creating domain key
[Tue Apr 28 13:49:28 CEST 2020] The domain key is here: /root/.acme.sh/xxxxxx.net/xxxxxx.net.key
[Tue Apr 28 13:49:28 CEST 2020] Multi domain='DNS:xxxxxxxxxxxx.net,DNS:www.xxxxxx.net'
[Tue Apr 28 13:49:28 CEST 2020] Getting domain auth token for each domain
[Tue Apr 28 13:49:31 CEST 2020] Getting webroot for domain='xxxxxx.net'
[Tue Apr 28 13:49:31 CEST 2020] Getting webroot for domain='www.xxxxxx.net'
[Tue Apr 28 13:49:31 CEST 2020] Verifying: xxxxxx.net
f7GaM0d-Nbsm_tgb5l71q_gsjFQzsZJaCSa1IE1MroA.4E3VCTFsySjUrqnCg0ooULx-3kbdPBygi0aWkvg5Gd8
[information] No new certificates or certificates due for renewal found
[information] apache::createIpPort: creating ip/port settings for  xx.xxx.xxx.xxx:80
[notice] xx.xxx.xxx.xxx:80 :: namevirtualhost-statement no longer needed for apache-2.4
[debug] xx.xxx.xxx.xxx:80 :: inserted vhostcontainer
[information] apache::createIpPort: creating ip/port settings for  xx.xxx.xxx.xxx:443
[debug] xx.xxx.xxx.xxx:443 :: inserted vhostcontainer
[information] apache::createVirtualHosts: creating vhost container for domain 10, customer aos
[information] apache::createVirtualHosts: creating vhost container for domain 8, customer hassinger-j
[information] apache::createVirtualHosts: creating vhost container for domain 7, customer kreiselm-a
[information] apache::createVirtualHosts: creating vhost container for domain 5, customer weiss-a
[information] apache::createVirtualHosts: creating vhost container for domain 4, customer wolf-t
[information] apache::createVirtualHosts: creating vhost container for domain 11, customer coepto
[information] apache::createVirtualHosts: creating vhost container for domain 13, customer coepto
[information] apache::writeConfigs: rebuilding /etc/apache2/sites-enabled/
[information] apache::writeConfigs: rebuilding /etc/apache2/htpasswd/
[information] apache::writeConfigs: rebuilding /etc/apache2/sites-enabled/
[information] Froxlor\Cron\Http\ApacheFcgi::reload: running service php7.3-fpm restart
[information] Froxlor\Cron\Http\ApacheFcgi::reload: reloading Froxlor\Cron\Http\ApacheFcgi
[notice] Creating passwd file
[notice] Writing 8 entries to passwd file
[notice] Succesfully wrote passwd file
[notice] Creating group file
[notice] Writing 6 entries to group file
[notice] Succesfully wrote group file
[notice] Creating shadow file
[notice] Writing 8 entries to shadow file
[notice] Succesfully wrote shadow file
[notice] Checking system's last guid
 

Share this post


Link to post
Share on other sites
  • 0

Acme.conf for Apache

Alias "/.well-known/acme-challenge" "/var/www/froxlor/.well-known/acme-challenge"
<Directory "/var/www/froxlor/.well-known/acme-challenge">
	Require all granted
</Directory>

 

Share this post


Link to post
Share on other sites
  • 0
4 minutes ago, MeinerEiner said:

xxxxxx.net:Verify error:The key authorization file from the server did not match this challenge

k.A. was du da gemacht hast...habe ich bisher noch nicht gesehen.

Lösche doch mal alle Let's Encrypt Zertifikate aus froxlor und aus /root/.acme.sh/[domain] - mach am besten den Cronjob für 10-15min aus dafür. Dann wartest du nochmal 10-15 Minuten und lässt den cronjob noch mal manuell mit --force und --debug laufen

Share this post


Link to post
Share on other sites
  • 0

Ok... I'll do it.

All files remove from:

/var/www/froxlor/.well-known/acme-challenge

delete folders

/root/.acme.sh/[domain.tld]

 

Now i'll wait 1h

 

 

Share this post


Link to post
Share on other sites
  • 0

I started the cron job manually, same result:

Verify error:The key authorization file from the server did not match this challenge
 

Can you try to reproduce this on a testserver with a test domain?

System: Debian Buster

Share this post


Link to post
Share on other sites
  • 0

well, then please tell us the domain. must be something there; from what I've google about that errors it's mostly dns issues or alias-related issues

Share this post


Link to post
Share on other sites
  • 0

ok, I get the same error. There's no CAA dns record that would forbid issueing by letsencrypt, there is an A record which I assume is correct. According to google, this error could occur if the domain could not be resolved correctly. Does the server possibly have an IPv6 configured and is listening to ipv6? The domain does not have an AAAA record. Others state is has something to do with the local account, check https://github.com/acmesh-official/acme.sh/issues/2525#issuecomment-556523797

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

×
×
  • Create New...