From: "Steven Levine" Received: from [192.168.100.201] (HELO mail.2rosenthals.com) by 2rosenthals.com (CommuniGate Pro SMTP 5.4.10) with ESMTP id 11340260 for ecs-isp@2rosenthals.com; Wed, 11 Dec 2024 00:40:40 -0500 Received: from secmgr-va.2rosenthals.com ([50.73.8.217]:54604 helo=mail2.2rosenthals.com) by mail.2rosenthals.com with esmtps (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.97.1) (envelope-from ) id 1tLFSY-000000000y8-144m for ecs-isp@2rosenthals.com; Wed, 11 Dec 2024 00:40:30 -0500 Received: from mta-102b.earthlink-vadesecure.net ([51.81.61.67]:44361 helo=mta-102a.earthlink-vadesecure.net) by mail2.2rosenthals.com with esmtps (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (Exim 4.97.1) (envelope-from ) id 1tLFSV-000000007Ag-0dG1 for ecs-isp@2rosenthals.com; Wed, 11 Dec 2024 00:40:27 -0500 DKIM-Signature: v=1; a=rsa-sha256; bh=avApfJX4knEq6ovA3tQ3I5fRmQ82FKK9mQeJXp CeHUY=; c=relaxed/relaxed; d=earthlink.net; h=from:reply-to:subject: date:to:cc:resent-date:resent-from:resent-to:resent-cc:in-reply-to: references:list-id:list-help:list-unsubscribe:list-unsubscribe-post: list-subscribe:list-post:list-owner:list-archive; q=dns/txt; s=dk12062016; t=1733895626; x=1734500426; b=eI0UtSYfLihZkrubYG/q7pdidyT QX+Iv5TyWP+mWE2X7tUIy22L4QYLUOCyMpbw4w7u1OKmgsQz/8FGRmEGpPBAJrOuRbln2/f s5PXDrXhfp3b2YfQC5wCa4v6/tLN6GaBq8uOxgzA8T4a+7b68pLey0gfqEAusLw5Gx5Ka7e OBv6tJN0WaulmpwC3yKhhJkQbC67/8xpkXxndiQlFmx36OXRma9cpedHr9ODVQfiVOBHEAR kYloVIu5GOaZ5gt7FsRUvTT5NFHZkf0ngSb8F/Yu0Dkj4+1mqir4F+HhvRMgim+NLByVC6h 5SQRRYAbLkegWILxo1OYWQvVPfKp/iw== Received: from slamain ([172.56.178.196]) by vsel1nmtao02p.internal.vadesecure.com with ngmta id 18ebfe46-181008e2b9096ee7; Wed, 11 Dec 2024 05:40:26 +0000 Message-ID: <6759215f.4.mr2ice.fgrirsq@earthlink.net> Date: Tue, 10 Dec 2024 21:21:35 -0800 To: "eCS ISP Mailing List" In-Reply-To: Subject: Re: [eCS-ISP] Getting started with Let's Encrypt X-Mailer: MR/2 Internet Cruiser Edition for OS/2 v3.00.11.24/60 In , on 12/08/24 at 09:00 PM, "Peter Moylan" said: Hi Peter, >> to create your production account. This will create >> c:\etc\ssl\uacme\private\key.pem - your account's private key. >SYS1804: The system cannot find the file CURL4. These are all libraries supplied by netlabs and can be installed with yum or anpm. Both have the ability given a DLL to find the name of the corresponding rpm package. When his kind of failure happens chkdll32 or pmdll are your friends d:\internet\uacme\bin >chkdll32 uacme.exe Loading DLL 'libcn0' --> D:\USR\LIB\LIBCN0.DLL. Loading DLL 'libcx0' --> D:\USR\LIB\LIBCX0.DLL. Loading DLL 'gtls30' --> D:\USR\LIB\GTLS30.DLL. Loading DLL 'curl4' --> D:\USR\LIB\CURL4.DLL. Loading DLL 'doscalls' --> loaded. All DLL's used by 'uacme.exe' could be loaded. >Hmm. ANPM says that I have curl installed. It sounds as if I'm going to >be spending a few days on a DLL hunt. FWIW, the hunting time should be at worst an hour. We have to tools to answer the questions. I'll take some of the blame for his. I tend to assume that folks have a basic understanding of how we port linux app and how we use netlabs to provide a large number of the required supporting DLLs. >Suggestion: modify the format of your uacme-renew.domains file so that >the first field on each line gives the HTML document root for that >domain. That's basically what I plan to do, although the the lines will start with a keyword to allow for additional functionality in the future. This will allow the definition of dual homed domains to bone via the control file. >Because, no matter what "logical" file layout plan you devise, >you will find installations where that arrangement doesn't work. I did not implement these scripts with the specific intention of having them used by anyone other than Dan and I. The code is clean enough that these kinds of enhancements will be relatively low effort. >I noticed that your uacme-hook has a lot of error checking that could, in >my opinion, be once-only checks. (In my case, the error messages prompted >me to create a number of directories that didn't exist.) If I were doing >that job, I'd write a separate "configure" script that created all the >necessary directories and configuration file, and where needed prompted >the user for some locations; and then simplify the uacme-hook code. If these scripts turn into a product, there will have to be some sort of installer for the rest of the world. I most likely will not remove the error checking code. Stuff happens even on well maintained working systems. I'd rather the the code tell me what's wrong than have to figure out some unexpected strange failure. The hook script is not all that easy to debug because it's launched by uacme.exe. Steven -- ---------------------------------------------------------------------- "Steven Levine" Warp/DIY/BlueLion etc. www.scoug.com www.arcanoae.com www.warpcave.com ----------------------------------------------------------------------