pseudomoon.jp

To content | To menu | To search

FreeBSD での Let's encrypt 更新

By takagiwa on Monday, August 8 2016, 20:10 - FreeBSD - Permalink

2016/11/10 追記

情報更新しました

以下は古い内容。

FreeBSD 10R 系に pkg で以前インストールした security/py27-letsencrypt が、

Traceback (most recent call last):
  File "/usr/local/bin/letsencrypt", line 5, in <module>
    from pkg_resources import load_entry_point
  File "/usr/local/lib/python2.7/site-packages/pkg_resources/__init__.py", line 2927, in <module>
    @_call_aside
  File "/usr/local/lib/python2.7/site-packages/pkg_resources/__init__.py", line 2913, in _call_aside
    f(*args, **kwargs)
  File "/usr/local/lib/python2.7/site-packages/pkg_resources/__init__.py", line 2940, in _initialize_master_working_set
    working_set = WorkingSet._build_master()
  File "/usr/local/lib/python2.7/site-packages/pkg_resources/__init__.py", line 637, in _build_master
    return cls._build_from_requirements(__requires__)
  File "/usr/local/lib/python2.7/site-packages/pkg_resources/__init__.py", line 650, in _build_from_requirements
    dists = ws.resolve(reqs, Environment())
  File "/usr/local/lib/python2.7/site-packages/pkg_resources/__init__.py", line 829, in resolve
    raise DistributionNotFound(req, requirers)
pkg_resources.DistributionNotFound: The 'acme==0.5.0' distribution was not found and is required by letsencrypt

というエラーで動かなくなっていた。

今は security/letsencrypt.sh を入れなければいけないらしいので、pkg で前のを delete してから入れ直し。

config.sh.example から config.sh をコピーして、

BASEDIR=/usr/local/www/nginx

として実行したものの、

# letsencrypt.sh --cron --domain examples.com
# INFO: Using main config file /usr/local/etc/letsencrypt.sh/config.sh
Processing examples.com
 + Signing domains...
 + Generating private key...
 + Generating signing request...
 + Requesting challenge for examples.com...
  + ERROR: An error occurred while sending post-request to https://acme-v01.api.letsencrypt.org/acme/new-authz (Status 403)

Details:
{
  "type": "urn:acme:error:unauthorized",
  "detail": "No registration exists matching provided key",
  "status": 403
}

(examples.com は実際は自分のドメイン)

検索すると、向こうからこっちのサーバーに到達できてないんじゃない?という話しもあったけれど、不明。

.acme-challenges に適当な html ファイルを置くと、自分の作業環境からは参照できる。

Add a comment

HTML code is displayed as text and web addresses are automatically converted.

They posted on the same topic

Trackback URL : https://www.pseudomoon.jp/dotclear/index.php?trackback/65

This post's comments feed