https://bugs.contribs.org/show_bug.cgi?id=10862
Chris Sansom-Ninnes <[email protected]> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |[email protected]
--- Comment #5 from Chris Sansom-Ninnes <[email protected]> ---
= ENVIRONMENT:
Tested on SME 9.2, up to date, with Fail2Ban and existing Dehydrated contribs.
= CURRENT VERSION:
[root@irene ~]# rpm -qa dehydrated
dehydrated-0.6.2-14.el6.sme.noarch
[root@irene ~]# ls /etc/cron.d
0hourly purge_junkmail raid-check smolt warnquota
[root@irene ~]# ls /etc/cron.daily
0logwatch conf-mod_ssl letsencrypt mlocate.cron smeserver-yum
tmpwatch-formmagick
BackupHome dehydrated logrotate prelink SyncMacbook
cleanup_fail2ban freshclam makewhatis.cron sa_update tmpwatch
[root@irene ~]# ls /etc/cron.weekly
refresh-ddns
[root@irene ~]# cat /etc/cron.daily/letsencrypt
#!/bin/sh
/usr/bin/dehydrated -c 2>&1 | logger -t dehydrated
[root@irene ~]# cat /etc/cron.daily/dehydrated
#!/bin/sh
# Uncomment to enable auto-renewal
# /usr/bin/dehydrated -c 2>&1 | awk '{ print strftime(), $0; fflush(); }' >>
/var/log/dehydrated.log
# Uncomment this to auto revoke old certs
# /usr/bin/dehydrated_revoke 2>&1 | awk '{ print strftime(), $0; fflush(); }'
>> /var/log/dehydrated.log
[root@irene ~]# db configuration show letsencrypt
letsencrypt=service
ACCEPT_TERMS=yes
API=2
configure=none
[email protected]
hookScript=disabled
status=enabled
= TESTING:
[root@irene ~]# yum update dehydrated --enablerepo=smetest
...
[root@irene ~]# rpm -qa dehydrated
dehydrated-0.6.5-1.el6.noarch
[root@irene ~]# ls /etc/cron.d
0hourly dehydrated purge_junkmail raid-check smolt warnquota
[root@irene ~]# ls /etc/cron.daily
0logwatch conf-mod_ssl logrotate prelink SyncMacbook
BackupHome freshclam makewhatis.cron sa_update tmpwatch
cleanup_fail2ban letsencrypt mlocate.cron smeserver-yum
tmpwatch-formmagick
[root@irene ~]# ls /etc/cron.weekly
refresh-ddns
[root@irene ~]# cat /etc/cron.d/dehydrated
48 2 * * 5 root test -s /etc/dehydrated/domains.txt && /usr/bin/dehydrated
--cron
[root@irene ~]# dehydrated -c -x
# INFO: Using main config file /etc/dehydrated/config
+ Fetching account ID...
Processing ninnes.duckdns.org with alternative names: irene.ninnes.duckdns.org
wiki.ninnes.duckdns.org
+ Checking domain name(s) of existing cert... unchanged.
+ Checking expire date of existing cert...
+ Valid till Apr 1 19:56:55 2020 GMT (Less than 30 days). Renewing!
+ Signing domains...
+ Generating private key...
+ Generating signing request...
+ Requesting new certificate order from CA...
+ Received 3 authorizations URLs from the CA
+ Handling authorization for irene.ninnes.duckdns.org
+ Handling authorization for wiki.ninnes.duckdns.org
+ Handling authorization for ninnes.duckdns.org
+ 3 pending challenge(s)
+ Deploying challenge tokens...
+ Responding to challenge for irene.ninnes.duckdns.org authorization...
+ Challenge is valid!
+ Responding to challenge for wiki.ninnes.duckdns.org authorization...
+ Challenge is valid!
+ Responding to challenge for ninnes.duckdns.org authorization...
+ Challenge is valid!
+ Cleaning challenge tokens...
+ Requesting certificate...
+ Checking certificate...
+ Done!
+ Creating fullchain.pem...
Set up modSSL db keys
Signal events
All complete
+ Done!
= CONCLUSION:
New cron.d entry for dehydrated replaced the existing one, however I still have
a legacy letsencrypt entry in /etc/cron.daily and associated template files in
/etc/e-smith/templates/etc/cron.daily/letsencrypt
Upgrade should have removed old letsencrypt template files.
--
You are receiving this mail because:
You are the QA Contact for the bug._______________________________________________
Mail for each SME Contribs bug report
To unsubscribe, e-mail [email protected]
Searchable archive at https://lists.contribs.org/mailman/public/contribteam/
