Email von Let' encript

vikozo

Member
guten Tag
ich bekomme Emails das mein certifikat ".... will expire in 9 days (on 17 Dec 17 20:21 +0000). Please make sure to renew your certificate before then, ....)
geh ich richtig in der annahme das ISPConfig den renew automatisch startet?
gruss
vinc
 

robotto7831a

Well-Known Member
Der Certbot läuft nicht unbedingt über apt. Den muss man selber updaten. Schau doch mal ins Logfile von dem Bot unter /var/log/letsencrypt was da so steht. Dort steht bestimmt Version zu alt oder so.
 

vikozo

Member
***letsencrypt.log***
2017-12-08 02:02:59,902:DEBUG:parsedatetime:return
2017-12-08 02:02:59,902:INFO:certbot.renewal:Cert not yet due for renewal
2017-12-08 02:02:59,932:INFO:certbot.hooks:Running post-hook command: echo '1' > /usr/local/ispconfig/server/le.restart
2017-12-08 02:02:59,937:DEBUG:certbot.main:Exiting abnormally:
Traceback (most recent call last):
File "/usr/bin/letsencrypt", line 11, in <module>
load_entry_point('certbot==0.10.2', 'console_scripts', 'certbot')()
File "/usr/lib/python2.7/dist-packages/certbot/main.py", line 849, in main
return config.func(config, plugins)
File "/usr/lib/python2.7/dist-packages/certbot/main.py", line 655, in renew
renewal.handle_renewal_request(config)
File "/usr/lib/python2.7/dist-packages/certbot/renewal.py", line 430, in handle_renewal_request
len(renew_failures), len(parse_failures)))
Error: 1 renew failure(s), 1 parse failure(s)
 

vikozo

Member
ein multitail /var/log/letsencrypt/letsencrypt.log
2017-12-11 02:03:26,094:DEBUG:parsedatetime:parse (top of loop): [30 days][]
2017-12-11 02:03:26,094:DEBUG:parsedatetime:CRE_UNITS matched
2017-12-11 02:03:26,094:DEBUG:parsedatetime:parse (bottom) [][30 days][][]
2017-12-11 02:03:26,094:DEBUG:parsedatetime:weekday False, dateStd False, dateStr False, time False, timeStr False, meri
dian False
2017-12-11 02:03:26,094:DEBUG:parsedatetime:dayStr False, modifier False, modifier2 False, units True, qunits False
2017-12-11 02:03:26,094:DEBUG:parsedatetime:_evalString(30 days, time.struct_time(tm_year=2017, tm_mon=12, tm_mday=11, t
m_hour=2, tm_min=3, tm_sec=26, tm_wday=0, tm_yday=345, tm_isdst=0))
2017-12-11 02:03:26,094:DEBUG:parsedatetime:_buildTime: [30 ][][days]
2017-12-11 02:03:26,094:DEBUG:parsedatetime:units days --> realunit days
2017-12-11 02:03:26,094:DEBUG:parsedatetime:return
2017-12-11 02:03:26,094:INFO:certbot.renewal:Cert not yet due for renewal
2017-12-11 02:03:26,110:DEBUG:parsedatetime:parse (top of loop): [30 days][]
2017-12-11 02:03:26,110:DEBUG:parsedatetime:CRE_UNITS matched
2017-12-11 02:03:26,110:DEBUG:parsedatetime:parse (bottom) [][30 days][][]
2017-12-11 02:03:26,111:DEBUG:parsedatetime:weekday False, dateStd False, dateStr False, time False, timeStr False, meri
dian False
2017-12-11 02:03:26,111:DEBUG:parsedatetime:dayStr False, modifier False, modifier2 False, units True, qunits False
2017-12-11 02:03:26,111:DEBUG:parsedatetime:_evalString(30 days, time.struct_time(tm_year=2017, tm_mon=12, tm_mday=11, t
m_hour=2, tm_min=3, tm_sec=26, tm_wday=0, tm_yday=345, tm_isdst=0))
2017-12-11 02:03:26,111:DEBUG:parsedatetime:_buildTime: [30 ][][days]
2017-12-11 02:03:26,111:DEBUG:parsedatetime:units days --> realunit days
2017-12-11 02:03:26,111:DEBUG:parsedatetime:return
2017-12-11 02:03:26,111:INFO:certbot.renewal:Cert not yet due for renewal
2017-12-11 02:03:26,111:INFO:certbot.hooks:Running post-hook command: echo '1' > /usr/local/ispconfig/server/le.restart
2017-12-11 02:03:26,116:DEBUG:certbot.main:Exiting abnormally:
Traceback (most recent call last):
File "/usr/bin/letsencrypt", line 11, in <module>
load_entry_point('certbot==0.10.2', 'console_scripts', 'certbot')()
File "/usr/lib/python2.7/dist-packages/certbot/main.py", line 849, in main
return config.func(config, plugins)
File "/usr/lib/python2.7/dist-packages/certbot/main.py", line 655, in renew
renewal.handle_renewal_request(config)
File "/usr/lib/python2.7/dist-packages/certbot/renewal.py", line 430, in handle_renewal_request
len(renew_failures), len(parse_failures)))
Error: 1 renew failure(s), 1 parse failure(s)
 

wotan2005

Member
okay, du siehst aber schon selber, das der Kollege dich gefragt hat, nach Logeinträgen VOR! DEM! 08-12-2017 und NICHT NACH DEM 08-12-2017!!!!
 

vikozo

Member
nochmals, aber mehr ist nicht im file vorhanden, wobei ich noch weitere Dateien habe mit letsencrypt.log.1 bis ca. .300
2017-12-11 11:18:17,480:WARNING:certbot.renewal:Renewal configuration file /etc/letsencrypt/renewal/imkerei-kocher.ch.co
nf is broken. Skipping.
2017-12-11 11:18:17,501:DEBUG:certbot.renewal:Traceback was:
Traceback (most recent call last):
File "/usr/lib/python2.7/dist-packages/certbot/renewal.py", line 59, in _reconstitute
renewal_candidate = storage.RenewableCert(full_path, config)
File "/usr/lib/python2.7/dist-packages/certbot/storage.py", line 373, in __init__
"file reference".format(self.configfile))
CertStorageError: renewal config file {} is missing a required file reference

2017-12-11 11:18:17,511:DEBUG:parsedatetime:parse (top of loop): [30 days][]
2017-12-11 11:18:17,512:DEBUG:parsedatetime:CRE_UNITS matched
2017-12-11 11:18:17,512:DEBUG:parsedatetime:parse (bottom) [][30 days][][]
2017-12-11 11:18:17,512:DEBUG:parsedatetime:weekday False, dateStd False, dateStr False, time False, timeStr False, meri
dian False
2017-12-11 11:18:17,512:DEBUG:parsedatetime:dayStr False, modifier False, modifier2 False, units True, qunits False
2017-12-11 11:18:17,512:DEBUG:parsedatetime:_evalString(30 days, time.struct_time(tm_year=2017, tm_mon=12, tm_mday=11, t
m_hour=11, tm_min=18, tm_sec=17, tm_wday=0, tm_yday=345, tm_isdst=0))
2017-12-11 11:18:17,512:DEBUG:parsedatetime:_buildTime: [30 ][][days]
2017-12-11 11:18:17,512:DEBUG:parsedatetime:units days --> realunit days
2017-12-11 11:18:17,512:DEBUG:parsedatetime:return
2017-12-11 11:18:17,512:INFO:certbot.renewal:Cert not yet due for renewal
2017-12-11 11:18:17,528:DEBUG:parsedatetime:parse (top of loop): [30 days][]
2017-12-11 11:18:17,528:DEBUG:parsedatetime:CRE_UNITS matched
2017-12-11 11:18:17,528:DEBUG:parsedatetime:parse (bottom) [][30 days][][]
2017-12-11 11:18:17,528:DEBUG:parsedatetime:weekday False, dateStd False, dateStr False, time False, timeStr False, meri
dian False
2017-12-11 11:18:17,528:DEBUG:parsedatetime:dayStr False, modifier False, modifier2 False, units True, qunits False
2017-12-11 11:18:17,529:DEBUG:parsedatetime:_evalString(30 days, time.struct_time(tm_year=2017, tm_mon=12, tm_mday=11, t
m_hour=11, tm_min=18, tm_sec=17, tm_wday=0, tm_yday=345, tm_isdst=0))
2017-12-11 11:18:17,529:DEBUG:parsedatetime:_buildTime: [30 ][][days]
2017-12-11 11:18:17,529:DEBUG:parsedatetime:units days --> realunit days
2017-12-11 11:18:17,529:DEBUG:parsedatetime:return
2017-12-11 11:18:17,529:INFO:certbot.renewal:Cert not yet due for renewal
2017-12-11 11:18:17,529:DEBUG:certbot.main:Exiting abnormally:
Traceback (most recent call last):
File "/usr/bin/certbot", line 11, in <module>
load_entry_point('certbot==0.10.2', 'console_scripts', 'certbot')()
File "/usr/lib/python2.7/dist-packages/certbot/main.py", line 849, in main
return config.func(config, plugins)
File "/usr/lib/python2.7/dist-packages/certbot/main.py", line 655, in renew
renewal.handle_renewal_request(config)
File "/usr/lib/python2.7/dist-packages/certbot/renewal.py", line 430, in handle_renewal_request
len(renew_failures), len(parse_failures)))
Error: 1 renew failure(s), 1 parse failure(s)




2017-12-11 11:18:17,479:WARNING:certbot.renewal:renewal config file {} is missing a required file reference
2017-12-11 11:18:17,480:WARNING:certbot.renewal:Renewal configuration file /etc/letsencrypt/renewal/imkerei-kocher.ch.co
nf is broken. Skipping.
2017-12-11 11:18:17,501:DEBUG:certbot.renewal:Traceback was:
Traceback (most recent call last):
File "/usr/lib/python2.7/dist-packages/certbot/renewal.py", line 59, in _reconstitute
renewal_candidate = storage.RenewableCert(full_path, config)
File "/usr/lib/python2.7/dist-packages/certbot/storage.py", line 373, in __init__
"file reference".format(self.configfile))
CertStorageError: renewal config file {} is missing a required file reference

2017-12-11 11:18:17,511:DEBUG:parsedatetime:parse (top of loop): [30 days][]
2017-12-11 11:18:17,512:DEBUG:parsedatetime:CRE_UNITS matched
2017-12-11 11:18:17,512:DEBUG:parsedatetime:parse (bottom) [][30 days][][]
2017-12-11 11:18:17,512:DEBUG:parsedatetime:weekday False, dateStd False, dateStr False, time False, timeStr False, meri
dian False
2017-12-11 11:18:17,512:DEBUG:parsedatetime:dayStr False, modifier False, modifier2 False, units True, qunits False
2017-12-11 11:18:17,512:DEBUG:parsedatetime:_evalString(30 days, time.struct_time(tm_year=2017, tm_mon=12, tm_mday=11, t
m_hour=11, tm_min=18, tm_sec=17, tm_wday=0, tm_yday=345, tm_isdst=0))
2017-12-11 11:18:17,512:DEBUG:parsedatetime:_buildTime: [30 ][][days]
2017-12-11 11:18:17,512:DEBUG:parsedatetime:units days --> realunit days
2017-12-11 11:18:17,512:DEBUG:parsedatetime:return
2017-12-11 11:18:17,512:INFO:certbot.renewal:Cert not yet due for renewal
2017-12-11 11:18:17,528:DEBUG:parsedatetime:parse (top of loop): [30 days][]
2017-12-11 11:18:17,528:DEBUG:parsedatetime:CRE_UNITS matched
2017-12-11 11:18:17,528:DEBUG:parsedatetime:parse (bottom) [][30 days][][]
2017-12-11 11:18:17,528:DEBUG:parsedatetime:weekday False, dateStd False, dateStr False, time False, timeStr False, meri
dian False
2017-12-11 11:18:17,528:DEBUG:parsedatetime:dayStr False, modifier False, modifier2 False, units True, qunits False
2017-12-11 11:18:17,529:DEBUG:parsedatetime:_evalString(30 days, time.struct_time(tm_year=2017, tm_mon=12, tm_mday=11, t
m_hour=11, tm_min=18, tm_sec=17, tm_wday=0, tm_yday=345, tm_isdst=0))
2017-12-11 11:18:17,529:DEBUG:parsedatetime:_buildTime: [30 ][][days]
2017-12-11 11:18:17,529:DEBUG:parsedatetime:units days --> realunit days
2017-12-11 11:18:17,529:DEBUG:parsedatetime:return
2017-12-11 11:18:17,529:INFO:certbot.renewal:Cert not yet due for renewal
2017-12-11 11:18:17,529:DEBUG:certbot.main:Exiting abnormally:
Traceback (most recent call last):
File "/usr/bin/certbot", line 11, in <module>
load_entry_point('certbot==0.10.2', 'console_scripts', 'certbot')()
File "/usr/lib/python2.7/dist-packages/certbot/main.py", line 849, in main
return config.func(config, plugins)
File "/usr/lib/python2.7/dist-packages/certbot/main.py", line 655, in renew
renewal.handle_renewal_request(config)
File "/usr/lib/python2.7/dist-packages/certbot/renewal.py", line 430, in handle_renewal_request
len(renew_failures), len(parse_failures)))
Error: 1 renew failure(s), 1 parse failure(s)
 

robotto7831a

Well-Known Member
Ohne Sinn und Verstand Logfile zu posten hat nicht den großen Sinn. Es geht geziehlt um Logfileeinträge um das konkrete Datum vom 08.12.2017 und zwar in der Nacht.
 

vikozo

Member
@robotto7831a sorry dies ist der ganze Inhalt des Logilfe betreffend dem konkreten Datum, es ist immer die gleichen Einträge
2017-12-11 02:03:26,073:WARNING:certbot.renewal:Renewal configuration file /etc/letsencrypt/renewal/imkerei-kocher.ch.co
nf is broken. Skipping.
2017-12-11 02:03:26,091:DEBUG:certbot.renewal:Traceback was:
Traceback (most recent call last):
File "/usr/lib/python2.7/dist-packages/certbot/renewal.py", line 59, in _reconstitute
renewal_candidate = storage.RenewableCert(full_path, config)
File "/usr/lib/python2.7/dist-packages/certbot/storage.py", line 373, in __init__
"file reference".format(self.configfile))
CertStorageError: renewal config file {} is missing a required file reference

2017-12-11 02:03:26,094:DEBUG:parsedatetime:parse (top of loop): [30 days][]
2017-12-11 02:03:26,094:DEBUG:parsedatetime:CRE_UNITS matched
2017-12-11 02:03:26,094:DEBUG:parsedatetime:parse (bottom) [][30 days][][]
2017-12-11 02:03:26,094:DEBUG:parsedatetime:weekday False, dateStd False, dateStr False, time False, timeStr False, meri
dian False
2017-12-11 02:03:26,094:DEBUG:parsedatetime:dayStr False, modifier False, modifier2 False, units True, qunits False
2017-12-11 02:03:26,094:DEBUG:parsedatetime:_evalString(30 days, time.struct_time(tm_year=2017, tm_mon=12, tm_mday=11, t
m_hour=2, tm_min=3, tm_sec=26, tm_wday=0, tm_yday=345, tm_isdst=0))
2017-12-11 02:03:26,094:DEBUG:parsedatetime:_buildTime: [30 ][][days]
2017-12-11 02:03:26,094:DEBUG:parsedatetime:units days --> realunit days
2017-12-11 02:03:26,094:DEBUG:parsedatetime:return
2017-12-11 02:03:26,094:INFO:certbot.renewal:Cert not yet due for renewal
2017-12-11 02:03:26,110:DEBUG:parsedatetime:parse (top of loop): [30 days][]
2017-12-11 02:03:26,110:DEBUG:parsedatetime:CRE_UNITS matched
2017-12-11 02:03:26,110:DEBUG:parsedatetime:parse (bottom) [][30 days][][]
2017-12-11 02:03:26,111:DEBUG:parsedatetime:weekday False, dateStd False, dateStr False, time False, timeStr False, meri
dian False
2017-12-11 02:03:26,111:DEBUG:parsedatetime:dayStr False, modifier False, modifier2 False, units True, qunits False
2017-12-11 02:03:26,111:DEBUG:parsedatetime:_evalString(30 days, time.struct_time(tm_year=2017, tm_mon=12, tm_mday=11, t
m_hour=2, tm_min=3, tm_sec=26, tm_wday=0, tm_yday=345, tm_isdst=0))
2017-12-11 02:03:26,111:DEBUG:parsedatetime:_buildTime: [30 ][][days]
2017-12-11 02:03:26,111:DEBUG:parsedatetime:units days --> realunit days
2017-12-11 02:03:26,111:DEBUG:parsedatetime:return
2017-12-11 02:03:26,111:INFO:certbot.renewal:Cert not yet due for renewal
2017-12-11 02:03:26,111:INFO:certbot.hooks:Running post-hook command: echo '1' > /usr/local/ispconfig/server/le.restart
2017-12-11 02:03:26,116:DEBUG:certbot.main:Exiting abnormally:
Traceback (most recent call last):
File "/usr/bin/letsencrypt", line 11, in <module>
load_entry_point('certbot==0.10.2', 'console_scripts', 'certbot')()
File "/usr/lib/python2.7/dist-packages/certbot/main.py", line 849, in main
return config.func(config, plugins)
File "/usr/lib/python2.7/dist-packages/certbot/main.py", line 655, in renew
renewal.handle_renewal_request(config)
File "/usr/lib/python2.7/dist-packages/certbot/renewal.py", line 430, in handle_renewal_request
len(renew_failures), len(parse_failures)))
Error: 1 renew failure(s), 1 parse failure(s)

2017-12-10 23:22:30,828:WARNING:certbot.renewal:renewal config file {} is missing a required file reference
2017-12-10 23:22:30,829:WARNING:certbot.renewal:Renewal configuration file /etc/letsencrypt/renewal/imkerei-kocher.ch.co
nf is broken. Skipping.
2017-12-10 23:22:30,847:DEBUG:certbot.renewal:Traceback was:
Traceback (most recent call last):
File "/usr/lib/python2.7/dist-packages/certbot/renewal.py", line 59, in _reconstitute
renewal_candidate = storage.RenewableCert(full_path, config)
File "/usr/lib/python2.7/dist-packages/certbot/storage.py", line 373, in __init__
"file reference".format(self.configfile))
CertStorageError: renewal config file {} is missing a required file reference

2017-12-10 23:22:30,850:DEBUG:parsedatetime:parse (top of loop): [30 days][]
2017-12-10 23:22:30,850:DEBUG:parsedatetime:CRE_UNITS matched
2017-12-10 23:22:30,850:DEBUG:parsedatetime:parse (bottom) [][30 days][][]
2017-12-10 23:22:30,850:DEBUG:parsedatetime:weekday False, dateStd False, dateStr False, time False, timeStr False, meri
dian False
2017-12-10 23:22:30,850:DEBUG:parsedatetime:dayStr False, modifier False, modifier2 False, units True, qunits False
2017-12-10 23:22:30,850:DEBUG:parsedatetime:_evalString(30 days, time.struct_time(tm_year=2017, tm_mon=12, tm_mday=10, t
m_hour=23, tm_min=22, tm_sec=30, tm_wday=6, tm_yday=344, tm_isdst=0))
2017-12-10 23:22:30,850:DEBUG:parsedatetime:_buildTime: [30 ][][days]
2017-12-10 23:22:30,850:DEBUG:parsedatetime:units days --> realunit days
2017-12-10 23:22:30,851:DEBUG:parsedatetime:return
2017-12-10 23:22:30,851:INFO:certbot.renewal:Cert not yet due for renewal
2017-12-10 23:22:30,881:DEBUG:parsedatetime:parse (top of loop): [30 days][]
2017-12-10 23:22:30,882:DEBUG:parsedatetime:CRE_UNITS matched
2017-12-10 23:22:30,882:DEBUG:parsedatetime:parse (bottom) [][30 days][][]
2017-12-10 23:22:30,882:DEBUG:parsedatetime:weekday False, dateStd False, dateStr False, time False, timeStr False, meri
dian False
2017-12-10 23:22:30,882:DEBUG:parsedatetime:dayStr False, modifier False, modifier2 False, units True, qunits False
2017-12-10 23:22:30,882:DEBUG:parsedatetime:_evalString(30 days, time.struct_time(tm_year=2017, tm_mon=12, tm_mday=10, t
m_hour=23, tm_min=22, tm_sec=30, tm_wday=6, tm_yday=344, tm_isdst=0))
2017-12-10 23:22:30,882:DEBUG:parsedatetime:_buildTime: [30 ][][days]
2017-12-10 23:22:30,882:DEBUG:parsedatetime:units days --> realunit days
2017-12-10 23:22:30,882:DEBUG:parsedatetime:return
2017-12-10 23:22:30,882:INFO:certbot.renewal:Cert not yet due for renewal
2017-12-10 23:22:30,920:DEBUG:certbot.main:Exiting abnormally:
Traceback (most recent call last):
File "/usr/bin/certbot", line 11, in <module>
load_entry_point('certbot==0.10.2', 'console_scripts', 'certbot')()
File "/usr/lib/python2.7/dist-packages/certbot/main.py", line 849, in main
return config.func(config, plugins)
File "/usr/lib/python2.7/dist-packages/certbot/main.py", line 655, in renew
renewal.handle_renewal_request(config)
File "/usr/lib/python2.7/dist-packages/certbot/renewal.py", line 430, in handle_renewal_request
len(renew_failures), len(parse_failures)))
Error: 1 renew failure(s), 1 parse failure(s)
 

robotto7831a

Well-Known Member
In der zweiten Zeile steht dein Problem. Stand in dem anderen Posting auch, hatte ich überlesen, da ich nach etwas anderem gesucht hatte.

Wie sieht denn die Config aus?
 

vikozo

Member
@robotto7831a vielen Dank,
unter /etc/letsencrypt/renewal# hab ich die Datei gefunden!
die Datei imkerei-kocher.ch-0001.conf war leer. hab sie gelöscht und ein "certbot renew" durchgeführt.
ich denke da wurden jetzt neu certifikate erstellt, aber es gab auch Infos/Warning
/usr/lib/python2.7/dist-packages/OpenSSL/rand.py:58: UserWarning: implicit cast from 'char *' to a different pointer type: will be forbidden in the future (check that the types are as you expect; use an explicit ffi.cast() if they are correct)
result_code = _lib.RAND_bytes(result_buffer, num_bytes)

Encountered vhost ambiguity but unable to ask for user guidance in non-interactive mode. Currently Certbot needs each vhost to be in its own conf file, and may need vhosts to be explicitly labelled with ServerName or ServerAlias directories.
was mir noch aufgefallen ist es gibt *.conf file wo die Version 0.10.2 ist und eine andere Version 0.18.1 hat
dabei ist auch diese Info auf dem Bildschirm erschienen
Attempting to parse the version 0.18.1 renewal configuration file found at /etc/letsencrypt/renewal/kozo.ch.conf with version 0.10.2 of Certbot. This might not work.
noch eine frage - mein certbot hat die version: 0.10.2 wie wird es unter Debian aktualisiert?
 

Werbung

Top