Hi Raf,
Thanks for the reply.
My /etc/httpd.conf is at the bottom.
Thanks, Ed
On 3 Oct 2016 at 19:01, Raf Czlonka wrote:
Hi Ed,
Impossible to tell without looking at your /etc/httpd.conf file.
Regards,
Raf
On Mon, Oct 03, 2016 at 06:36:52PM BST, Ed D. wrote:
> This is a re-send.
> I sent it last night but it hasn't shown up yet.
> Ed
>
> On 27 Sep 2016 at 15:19, Ed D. wrote:
>
> > On 27 Sep 2016 at 7:39, Stuart Henderson wrote:
> >
> > > On 2016-09-27, Ed D. <li...@rensseltucky.com> wrote:
> > > > I'm running OpenBSD 6.0-stable (GENERIC.MP)
> > > > AMD64.
> > > > I have the
> > > > letskencrypt-0.1.7 privilege-separated letsencrypt client
> > > > package installed.
> > >
> > > You need the newer version that is in -stable ports - 0.1.7
> > > doesn't work any more.
> > >
> > Thanks for the info.
> > I didn't know.
> > I just got letskencrypt-0.1.10
> > from ports, and will begin figuring out
> > how to set up httpd for challenges.
> >
> > I just upgraded from OpenBSD 5.1 and
> > have to get used to OpenSMTPD and httpd.
> > Thanks Again, Ed
> >
> Hi,
> Was able to get everything working.
> I have the certificates loaded and working with
> my webserver.
> My PROBLEM?
> In trying to get the cron job to keep my certificates
> valid, I'm not able to find a command that will
> reload httpd without error.
>
> First off, httpd -n shows setup is OK.
>
> I've tried and all fail,
> # /etc/rc.d/httpd reload
> httpd(failed)
> #
>
> # /etc/rc.d/httpd restart
> httpd(failed)
> #
>
> # rcctl -d reload httpd
> doing _rc_parse_conf
> doing _rc_quirks
> httpd_flags > -v -v -v -v <
> doing _rc_parse_conf /var/run/rc.d/httpd
> doing _rc_quirks
> httpd
> doing rc_check
> (failed)
> #
>
> # rcctl -d restart httpd
> doing _rc_parse_conf
> doing _rc_quirks
> httpd_flags > -v -v -v -v <
> doing _rc_parse_conf /var/run/rc.d/httpd
> doing _rc_quirks
> doing _rc_parse_conf
> doing _rc_quirks
> httpd_flags > -v -v -v -v <
> doing _rc_parse_conf /var/run/rc.d/httpd
> doing _rc_quirks
> doing rc_check
> doing _rc_parse_conf
> doing _rc_quirks
> httpd_flags > -v -v -v -v <
> doing _rc_parse_conf /var/run/rc.d/httpd
> doing _rc_quirks
> doing rc_check
> httpd
> doing rc_pre
> server_tls_load_keypair: using certificate
> /etc/ssl/letsencrypt/fullchain.pem
> server_tls_load_keypair: using private key
> /etc/ssl/letsencrypt/private/privkey.pem
> server_tls_load_keypair: using certificate
> /etc/ssl/letsencrypt/fullchain.pem
> server_tls_load_keypair: using private key
> /etc/ssl/letsencrypt/private/privkey.pem
> server_tls_load_keypair: using certificate
> /etc/ssl/letsencrypt/fullchain.pem
> server_tls_load_keypair: using private key
> /etc/ssl/letsencrypt/private/privkey.pem
> server_tls_load_keypair: using certificate
> /etc/ssl/letsencrypt/fullchain.pem
> server_tls_load_keypair: using private key
> /etc/ssl/letsencrypt/private/privkey.pem
> server_tls_load_keypair: using certificate
> /etc/ssl/letsencrypt/fullchain.pem
> server_tls_load_keypair: using private key
> /etc/ssl/letsencrypt/private/privkey.pem
> server_tls_load_keypair: using certificate
> /etc/ssl/letsencrypt/fullchain.pem
> server_tls_load_keypair: using private key
> /etc/ssl/letsencrypt/private/privkey.pem
> server_tls_load_keypair: using certificate
> /etc/ssl/letsencrypt/fullchain.pem
> server_tls_load_keypair: using private key
> /etc/ssl/letsencrypt/private/privkey.pem
> server_tls_load_keypair: using certificate
> /etc/ssl/letsencrypt/fullchain.pem
> server_tls_load_keypair: using private key
> /etc/ssl/letsencrypt/private/privkey.pem
> server_tls_load_keypair: using certificate
> /etc/ssl/letsencrypt/fullchain.pem
> server_tls_load_keypair: using private key
> /etc/ssl/letsencrypt/private/privkey.pem
> server_tls_load_keypair: using certificate
> /etc/ssl/letsencrypt/fullchain.pem
> server_tls_load_keypair: using private key
> /etc/ssl/letsencrypt/private/privkey.pem
> configuration OK
> doing rc_start
> doing _rc_wait start
> doing rc_check
> doing rc_check
> doing rc_check
> doing rc_check
> doing rc_check
> doing rc_check
> doing rc_check
> doing rc_check
> doing rc_check
> doing rc_check
> doing rc_check
> doing rc_check
> doing rc_check
> doing rc_check
> doing rc_check
> doing rc_check
> doing rc_check
> doing rc_check
> doing rc_check
> doing rc_check
> doing rc_check
> doing rc_check
> doing rc_check
> doing rc_check
> doing rc_check
> doing rc_check
> doing rc_check
> doing rc_check
> doing rc_check
> doing rc_check
> doing _rc_rm_runfile
> (failed)
> #
>
> Does anybody have any idea what I'm not seeing?
> Thanks, Ed
> _______________________________________________
# httpd -n
configuration OK
#
#
# cat httpd.conf
prefork 3
chroot "/var/www"
server "default" {
alias "www.domain1.com"
listen on 10.0.0.2 port 80
listen on 10.0.0.2 tls port 443
tls certificate "/etc/ssl/letsencrypt/fullchain.pem"
tls key "/etc/ssl/letsencrypt/private/privkey.pem"
root "/htdocs/edporch/domain1"
location "/.well-known/acme-challenge/*" {
root "/letsencrypt"
root strip 2
}
}
types {
text/css css
text/html html htm
text/plain txt
image/gif gif
image/jpeg jpeg jpg
image/png png
application/javascript js
application/xml xml
}
server "www.domain2.com" {
alias "domain2.com"
listen on 10.0.0.2 port 80
listen on 10.0.0.2 tls port 443
tls certificate "/etc/ssl/letsencrypt/fullchain.pem"
tls key "/etc/ssl/letsencrypt/private/privkey.pem"
root "/htdocs/domain2"
location "/.well-known/acme-challenge/*" {
root "/letsencrypt"
root strip 2
}
}
server "www.domain3.com" {
alias "domain3.com"
listen on 10.0.0.2 port 80
listen on 10.0.0.2 tls port 443
tls certificate "/etc/ssl/letsencrypt/fullchain.pem"
tls key "/etc/ssl/letsencrypt/private/privkey.pem"
root "/htdocs/edporch/domain3"
location "/.well-known/acme-challenge/*" {
root "/letsencrypt"
root strip 2
}
}
server "www.domain4.com" {
alias "domain4.com"
listen on 10.0.0.2 port 80
listen on 10.0.0.2 tls port 443
tls certificate "/etc/ssl/letsencrypt/fullchain.pem"
tls key "/etc/ssl/letsencrypt/private/privkey.pem"
root "/htdocs/edporch/domain4"
location "/.well-known/acme-challenge/*" {
root "/letsencrypt"
root strip 2
}
}
server "www.domain5.com" {
alias "domain5.com"
listen on 10.0.0.2 port 80
listen on 10.0.0.2 tls port 443
tls certificate "/etc/ssl/letsencrypt/fullchain.pem"
tls key "/etc/ssl/letsencrypt/private/privkey.pem"
root "/htdocs/edporch/domain5"
location "/.well-known/acme-challenge/*" {
root "/letsencrypt"
root strip 2
}
}
#
_______________________________________________
Openbsd-newbies mailing list
Openbsd-newbies@sfobug.theapt.org
http://mailman.theapt.org/listinfo/openbsd-newbies
