FreeBSD での Let's encrypt 更新
By takagiwa on Monday, August 8 2016, 20:10 - FreeBSD - Permalink
FreeBSD 10R 系に pkg で以前インストールした security/py27-letsencrypt が、
Traceback (most recent call last): File "/usr/local/bin/letsencrypt", line 5, in <module> from pkg_resources import load_entry_point File "/usr/local/lib/python2.7/site-packages/pkg_resources/__init__.py", line 2927, in <module> @_call_aside File "/usr/local/lib/python2.7/site-packages/pkg_resources/__init__.py", line 2913, in _call_aside f(*args, **kwargs) File "/usr/local/lib/python2.7/site-packages/pkg_resources/__init__.py", line 2940, in _initialize_master_working_set working_set = WorkingSet._build_master() File "/usr/local/lib/python2.7/site-packages/pkg_resources/__init__.py", line 637, in _build_master return cls._build_from_requirements(__requires__) File "/usr/local/lib/python2.7/site-packages/pkg_resources/__init__.py", line 650, in _build_from_requirements dists = ws.resolve(reqs, Environment()) File "/usr/local/lib/python2.7/site-packages/pkg_resources/__init__.py", line 829, in resolve raise DistributionNotFound(req, requirers) pkg_resources.DistributionNotFound: The 'acme==0.5.0' distribution was not found and is required by letsencrypt
というエラーで動かなくなっていた。
今は security/letsencrypt.sh を入れなければいけないらしいので、pkg で前のを delete してから入れ直し。
config.sh.example から config.sh をコピーして、
BASEDIR=/usr/local/www/nginx
として実行したものの、
# letsencrypt.sh --cron --domain examples.com # INFO: Using main config file /usr/local/etc/letsencrypt.sh/config.sh Processing examples.com + Signing domains... + Generating private key... + Generating signing request... + Requesting challenge for examples.com... + ERROR: An error occurred while sending post-request to https://acme-v01.api.letsencrypt.org/acme/new-authz (Status 403) Details: { "type": "urn:acme:error:unauthorized", "detail": "No registration exists matching provided key", "status": 403 }
(examples.com は実際は自分のドメイン)
検索すると、向こうからこっちのサーバーに到達できてないんじゃない?という話しもあったけれど、不明。
.acme-challenges に適当な html ファイルを置くと、自分の作業環境からは参照できる。