-----BEGIN PGP SIGNATURE-----
iQIzBAEBCgAdFiEEyEZOD5HVgOpeIJIXlSJfLnnc6wIFAlld/EsACgkQlSJfLnnc
6wJUWw/+LOf0cDsti3l3D+E7Ho7wyByteOUFyddIZV6l6tY6OjFcNS479wfV0UnG
ruRc8was0Ox5lJBAgNBQsyMVN05uy2bKCtSro6q/vVH06aOpPX3OK1joRip7caxl
ky2rS9EAvDbOB6mK2MXI3pC6bAAeqXn5c2ZCYi4YOFnrVzPeWCa0ctHJsuK3iC+r
sFrAijmiWjIIbPwpRFsDHaD4mZjTtZR1N5mph4qrd1V3/zCADsBaR0GFIPb7zcQF
gd8EQGJ8xyYzZ7ugNbtYsB0IagxJ+KyGnRzs+eJ52xRS5OYGrLNadLiNLiolM//t
YADRzoR5SiPeFtNc05TaKvd8HIJuC65eQSBnkCc6OLHcmW8SXxEHxJ9S27pAtwaD
ugvqk3Cf427M4juSHbOA5jYHt+gLIC6t5I11t8w/WBj7FL/GdV6KCfxx5KlX5gqM
gKk/Vo+xFrlV8PXcvaTA7hnpcQ3Ocn31LVHbEQ+FiFzY+NZ4ZKqFir7EJHz8LEdi
dN6Y9dnOGK/9ypyXqX5xe/y2xOgzwhmiJ5ip4/Eh0ZAirzLMDBAY1C9W96fHJ9SE
krWWXqsJ43R600AzfvPAQJZNwb327fJlgEMtqO+CgYYLahR+P831jGsCKfOuRUGg
VeL4kYCL6OVojXftJXG0UUoBb3Q0jlendMMf2uGBBllgRa81ZGM=
=Tboz
-----END PGP SIGNATURE-----
Hi, I attempt to use acme-client on server OpenBSD 6.1, with nginx runing.
But it fail with a bad response.
doas acme-client -vAD test.obsd4a.net
acme-client: /etc/ssl/acme/private/test.obsd4a.net-privkey.pem: domain
key exists (not creating)
acme-client: /etc/acme/letsencrypt-privkey.pem: account key exists (not
creating)
acme-client: https://acme-v01.api.letsencrypt.org/directory: directories
acme-client: acme-v01.api.letsencrypt.org: DNS: 23.206.21.80
acme-client: https://acme-v01.api.letsencrypt.org/acme/new-authz:
req-auth: test.obsd4a.net
acme-client:
/var/www/htdocs/test.obsd4a.net/www/L-pjGy6umVejj6q78_P_gW7rbhyJrV0AuLhjfsqI3aU:
created
acme-client:
https://acme-v01.api.letsencrypt.org/acme/challenge/hf0gCJFBvVlSBRp877_PVmTYLGNYmZDXC9eH2E_I0GE/1485696367:
challenge
acme-client:
https://acme-v01.api.letsencrypt.org/acme/challenge/hf0gCJFBvVlSBRp877_PVmTYLGNYmZDXC9eH2E_I0GE/1485696367:
status
acme-client:
https://acme-v01.api.letsencrypt.org/acme/challenge/hf0gCJFBvVlSBRp877_PVmTYLGNYmZDXC9eH2E_I0GE/1485696367:
bad response
acme-client: transfer buffer: [{ "type": "http-01", "status": "invalid",
"error": { "type": "urn:acme:error:unauthorized", "detail": "Invalid
response from
http://test.obsd4a.net/.well-known/acme-challenge/L-pjGy6umVejj6q78_P_gW7rbhyJrV0AuLhjfsqI3aU:
\"\u003chtml\u003e\r\n\u003chead\u003e\u003ctitle\u003e404 Not
Found\u003c/title\u003e\u003c/head\u003e\r\n\u003cbody
bgcolor=\"white\"\u003e\r\n\u003ccenter\u003e\u003ch1\u003e404 Not
Found\u003c/h1\u003e\u003c/center\u003e\r\n\u003chr\u003e\u003ccenter\u003e\"",
"status": 403 }, "uri":
"https://acme-v01.api.letsencrypt.org/acme/challenge/hf0gCJFBvVlSBRp877_PVmTYLGNYmZDXC9eH2E_I0GE/1485696367",
"token": "L-pjGy6umVejj6q78_P_gW7rbhyJrV0AuLhjfsqI3aU",
"keyAuthorization":
"L-pjGy6umVejj6q78_P_gW7rbhyJrV0AuLhjfsqI3aU.btIkQ8owertOE1LvXr1mezl9i5h6KptZrzIehfgwdcg",
"validationRecord": [ { "url":
"http://test.obsd4a.net/.well-known/acme-challenge/L-pjGy6umVejj6q78_P_gW7rbhyJrV0AuLhjfsqI3aU",
"hostname": "test.obsd4a.net", "port": "80", "addressesResolved": [
"213.246.39.160" ], "addressUsed": "213.246.39.160", "addressesTried":
[] } ] }] (1149 bytes)
acme-client: bad exit: netproc(32816): 1
I try with this nginx config:
location ^~ /.well-known/acme-challenge {
#alias /var/www/acme;
#try_files $uri =404;
allow all;
default_type "text/plain";
proxy_redirect off;
root /var/www/acme;
}
or this:
location ^~ /.well-known/acme-challenge {
alias /usr/local/www/acme;
try_files $uri =404;
}
But, same result, bad status.
----
FIY, i can obtain certs - in mode test - with cerbot ;)
(and first setting location).
--
~ " Fully Basic System Distinguish Life! " ~ " Libre as a BSD " +=<<<
----
<me>Stephane HUC as PengouinBSD or CIOTBSD</me>
<mail>bsd@stephane-huc.net</mail>
No comments:
Post a Comment