List ecs-isp@2rosenthals.com Arkiverade meddelande #958

Från: "Massimo S." <ecs-isp@2rosenthals.com> Meddelandehuvud
Oavkodat meddelande
Ämne: Re: [eCS-ISP] uacme 1.2.4 and path issue
Datum: Tue, 22 Oct 2024 17:24:26 +0200
Till: eCS ISP Mailing List <ecs-isp@2rosenthals.com>



Il 22/10/2024 17:03, Massimo S. ha scritto:


Il 22/10/2024 09:53, Steven Levine ha scritto:
In <list-11120563@2rosenthals.com>, on 10/21/24
    at 08:35 PM, "Massimo S." <ecs-isp@2rosenthals.com> said:

Hi Massimo,

if i use the option --c c:\mptn\etc\ssl\uacme\www.mydomain.it i get
uacme: failed to access c:\mptn\etc\ssl\uacme\www.mydomain.it/private

So far, I cannot replicate this failure here.

Of course, if you provided the full command line you use and all the
console output, someone might be able to figure out what's going astray on
your system.

BTW, the docs say it's -c not --c, but the parser seem to accept --c so
most likely your problem is elsewhere.

Steven

i'm confused, since if i run uacme 1.2.4 (just for a test)
it search the stuff here

uacme: version 1.2.4 starting on Tue, 22 Oct 2024 16:52:17
uacme: failed to access /@unixroot/etc/ssl/uacme

while 1.0.9 go into the "right" path \mptn\etc etc.
i never had to use -c option with 1.0.9

massimo

other details

uacme -v issue www.mydomain.it -c c:/mptn/etc/ssl/uacme -h hook_www_mydomain_it.cmd

and i got

uacme: version 1.2.4 starting on Tue, 22 Oct 2024 16:58:41
uacme: loading key from c:/mptn/etc/ssl/uacme/private/key.pem
uacme: loading key from c:/mptn/etc/ssl/uacme/private/www.mydomain.it/key.pem
uacme: c:/mptn/etc/ssl/uacme/private/www.mydomain.it/key.pem not found  *
uacme: generating new 2048-bit RSA key
uacme: key saved to c:/mptn/etc/ssl/uacme/private/www.mydomain.it/key.pem
uacme: checking existence and expiration of c:/mptn/etc/ssl/uacme/www.mydomain.it/cert.pem
uacme: c:/mptn/etc/ssl/uacme/www.mydomain.it/cert.pem does not exist **
uacme: fetching directory at https://acme-v02.api.letsencrypt.org/directory
uacme: curl_get: GET https://acme-v02.api.letsencrypt.org/directory failed: SSL peer certificate or SSH remote key was not OK
uacme: curl_get: waiting 5 seconds before retrying
uacme: curl_get: GET https://acme-v02.api.letsencrypt.org/directory failed: SSL peer certificate or SSH remote key was not OK
uacme: curl_get: waiting 5 seconds before retrying
uacme: curl_get: GET https://acme-v02.api.letsencrypt.org/directory failed: SSL peer certificate or SSH remote key was not OK
uacme: curl_get: waiting 5 seconds before retrying
uacme: acme_get: curl_get failed
uacme: failed to fetch directory at https://acme-v02.api.letsencrypt.org/directory

* this is right i manually removed it before, just to test
** this is right i manually removed it before, just to test



while if i don't delete key.pem and cert.pem
i get

uacme: version 1.2.4 starting on Tue, 22 Oct 2024 17:12:55
uacme: loading key from c:/mptn/etc/ssl/uacme/private/key.pem
uacme: loading key from c:/mptn/etc/ssl/uacme/private/www.mydomain.it/key.pem
uacme: checking existence and expiration of c:/mptn/etc/ssl/uacme/www.mydomain.it/cert.pem
uacme: c:/mptn/etc/ssl/uacme/www.mydomain.it/cert.pem expires in 89 days
uacme: querying OCSP server at http://r10.o.lencr.org
uacme: OCSP response has no nonce
uacme: OCSP certificate status is GOOD
uacme: skipping c:/mptn/etc/ssl/uacme/www.mydomain.it/cert.pem



while if i delete only cert.pem
i get the same

uacme: version 1.2.4 starting on Tue, 22 Oct 2024 17:16:40
uacme: loading key from c:/mptn/etc/ssl/uacme/private/key.pem
uacme: loading key from c:/mptn/etc/ssl/uacme/private/www.mydomain.it/key.pem
uacme: checking existence and expiration of c:/mptn/etc/ssl/uacme/www.mydomain.it/cert.pem
uacme: c:/mptn/etc/ssl/uacme/www.mydomain.it/cert.pem does not exist
uacme: fetching directory at https://acme-v02.api.letsencrypt.org/directory
uacme: curl_get: GET https://acme-v02.api.letsencrypt.org/directory failed: SSL peer certificate or SSH remote key was not OK
uacme: curl_get: waiting 5 seconds before retrying
uacme: curl_get: GET https://acme-v02.api.letsencrypt.org/directory failed: SSL peer certificate or SSH remote key was not OK
uacme: curl_get: waiting 5 seconds before retrying
uacme: curl_get: GET https://acme-v02.api.letsencrypt.org/directory failed: SSL peer certificate or SSH remote key was not OK
uacme: curl_get: waiting 5 seconds before retrying
uacme: acme_get: curl_get failed
uacme: failed to fetch directory at https://acme-v02.api.letsencrypt.org/directory


so i don't understand if uacme 1.2.4 is working correctly or not :-(

massimo

Prenumerera: Sändning, Uppsamling, Index.
Stoppa prenumeration
Meddelande till ListMaster