Ich bin dabei, einen emailserver zu konfigurieren und wollte den apachemode von acme.sh verwenden, um mir die nötigen tsl-zertifikate zu holen. Leider kommt aber immer ein 404 Error.
Hier ist die Log-Datei:
- Code: Select all
# acme.sh --issue --apache -d server.domain.de --debug
[Mi 20. Jan 22:03:21 CET 2021] Lets find script dir.
[Mi 20. Jan 22:03:21 CET 2021] _SCRIPT_='/root/.acme.sh/acme.sh'
[Mi 20. Jan 22:03:21 CET 2021] _script='/root/.acme.sh/acme.sh'
[Mi 20. Jan 22:03:21 CET 2021] _script_home='/root/.acme.sh'
[Mi 20. Jan 22:03:21 CET 2021] Using config home:/root/.acme.sh
https://github.com/acmesh-official/acme.sh
v2.8.9
[Mi 20. Jan 22:03:21 CET 2021] Running cmd: issue
[Mi 20. Jan 22:03:21 CET 2021] _main_domain='server.domain.de'
[Mi 20. Jan 22:03:21 CET 2021] _alt_domains='no'
[Mi 20. Jan 22:03:21 CET 2021] Using config home:/root/.acme.sh
[Mi 20. Jan 22:03:21 CET 2021] default_acme_server
[Mi 20. Jan 22:03:21 CET 2021] ACME_DIRECTORY='https://acme-v02.api.letsencrypt.org/directory'
[Mi 20. Jan 22:03:21 CET 2021] DOMAIN_PATH='/etc/ssl/private/server.domain.de'
[Mi 20. Jan 22:03:21 CET 2021] Using ACME_DIRECTORY: https://acme-v02.api.letsencrypt.org/directory
[Mi 20. Jan 22:03:21 CET 2021] _init api for server: https://acme-v02.api.letsencrypt.org/directory
[Mi 20. Jan 22:03:21 CET 2021] GET
[Mi 20. Jan 22:03:21 CET 2021] url='https://acme-v02.api.letsencrypt.org/directory'
[Mi 20. Jan 22:03:21 CET 2021] timeout=
[Mi 20. Jan 22:03:21 CET 2021] _CURL='curl --silent --dump-header /root/.acme.sh/http.header -L -g '
[Mi 20. Jan 22:03:22 CET 2021] ret='0'
[Mi 20. Jan 22:03:22 CET 2021] ACME_KEY_CHANGE='https://acme-v02.api.letsencrypt.org/acme/key-change'
[Mi 20. Jan 22:03:22 CET 2021] ACME_NEW_AUTHZ
[Mi 20. Jan 22:03:22 CET 2021] ACME_NEW_ORDER='https://acme-v02.api.letsencrypt.org/acme/new-order'
[Mi 20. Jan 22:03:22 CET 2021] ACME_NEW_ACCOUNT='https://acme-v02.api.letsencrypt.org/acme/new-acct'
[Mi 20. Jan 22:03:22 CET 2021] ACME_REVOKE_CERT='https://acme-v02.api.letsencrypt.org/acme/revoke-cert'
[Mi 20. Jan 22:03:22 CET 2021] ACME_AGREEMENT='https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf'
[Mi 20. Jan 22:03:22 CET 2021] ACME_NEW_NONCE='https://acme-v02.api.letsencrypt.org/acme/new-nonce'
[Mi 20. Jan 22:03:22 CET 2021] ACME_VERSION='2'
[Mi 20. Jan 22:03:22 CET 2021] Le_NextRenewTime
[Mi 20. Jan 22:03:22 CET 2021] Using CA: https://acme-v02.api.letsencrypt.org/directory
[Mi 20. Jan 22:03:22 CET 2021] _on_before_issue
[Mi 20. Jan 22:03:22 CET 2021] _chk_main_domain='server.domain.de'
[Mi 20. Jan 22:03:22 CET 2021] _chk_alt_domains
[Mi 20. Jan 22:03:22 CET 2021] Le_LocalAddress
[Mi 20. Jan 22:03:22 CET 2021] d='server.domain.de'
[Mi 20. Jan 22:03:22 CET 2021] Check for domain='server.domain.de'
[Mi 20. Jan 22:03:22 CET 2021] _currentRoot='apache'
[Mi 20. Jan 22:03:22 CET 2021] d
[Mi 20. Jan 22:03:22 CET 2021] Using config home:/root/.acme.sh
[Mi 20. Jan 22:03:22 CET 2021] ACME_DIRECTORY='https://acme-v02.api.letsencrypt.org/directory'
[Mi 20. Jan 22:03:23 CET 2021] httpdconfname='apache2.conf'
[Mi 20. Jan 22:03:23 CET 2021] httpdroot='/etc/apache2'
[Mi 20. Jan 22:03:23 CET 2021] httpdconf='/etc/apache2/apache2.conf'
[Mi 20. Jan 22:03:23 CET 2021] httpdconfname='apache2.conf'
[Mi 20. Jan 22:03:23 CET 2021] Checking if there is an error in the apache config file before starting.
[Mi 20. Jan 22:03:23 CET 2021] OK
[Mi 20. Jan 22:03:23 CET 2021] Backup apache config file='/etc/apache2/apache2.conf'
[Mi 20. Jan 22:03:23 CET 2021] JFYI, Config file /etc/apache2/apache2.conf is backuped to /root/.acme.sh/apache2.conf
[Mi 20. Jan 22:03:23 CET 2021] In case there is an error that can not be restored automatically, you may try restore it yourself.
[Mi 20. Jan 22:03:23 CET 2021] The backup file will be deleted on success, just forget it.
[Mi 20. Jan 22:03:23 CET 2021] apacheVer='2.4.41'
[Mi 20. Jan 22:03:23 CET 2021] _saved_account_key_hash is not changed, skip register account.
[Mi 20. Jan 22:03:23 CET 2021] Read key length:
[Mi 20. Jan 22:03:23 CET 2021] _createcsr
[Mi 20. Jan 22:03:23 CET 2021] Single domain='server.domain.de'
[Mi 20. Jan 22:03:23 CET 2021] Getting domain auth token for each domain
[Mi 20. Jan 22:03:23 CET 2021] d
[Mi 20. Jan 22:03:23 CET 2021] url='https://acme-v02.api.letsencrypt.org/acme/new-order'
[Mi 20. Jan 22:03:23 CET 2021] payload='{"identifiers": [{"type":"dns","value":"server.domain.de"}]}'
[Mi 20. Jan 22:03:23 CET 2021] RSA key
[Mi 20. Jan 22:03:23 CET 2021] HEAD
[Mi 20. Jan 22:03:23 CET 2021] _post_url='https://acme-v02.api.letsencrypt.org/acme/new-nonce'
[Mi 20. Jan 22:03:23 CET 2021] _CURL='curl --silent --dump-header /root/.acme.sh/http.header -L -g -I '
[Mi 20. Jan 22:03:24 CET 2021] _ret='0'
[Mi 20. Jan 22:03:24 CET 2021] POST
[Mi 20. Jan 22:03:24 CET 2021] _post_url='https://acme-v02.api.letsencrypt.org/acme/new-order'
[Mi 20. Jan 22:03:24 CET 2021] _CURL='curl --silent --dump-header /root/.acme.sh/http.header -L -g '
[Mi 20. Jan 22:03:25 CET 2021] _ret='0'
[Mi 20. Jan 22:03:25 CET 2021] code='201'
[Mi 20. Jan 22:03:25 CET 2021] Le_LinkOrder='https://acme-v02.api.letsencrypt.org/acme/order/110170489/7424721945'
[Mi 20. Jan 22:03:25 CET 2021] Le_OrderFinalize='https://acme-v02.api.letsencrypt.org/acme/finalize/110170489/7424721945'
[Mi 20. Jan 22:03:25 CET 2021] url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/10225269627'
[Mi 20. Jan 22:03:25 CET 2021] payload
[Mi 20. Jan 22:03:25 CET 2021] POST
[Mi 20. Jan 22:03:25 CET 2021] _post_url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/10225269627'
[Mi 20. Jan 22:03:25 CET 2021] _CURL='curl --silent --dump-header /root/.acme.sh/http.header -L -g '
[Mi 20. Jan 22:03:26 CET 2021] _ret='0'
[Mi 20. Jan 22:03:26 CET 2021] code='200'
[Mi 20. Jan 22:03:26 CET 2021] d='server.domain.de'
[Mi 20. Jan 22:03:26 CET 2021] Getting webroot for domain='server.domain.de'
[Mi 20. Jan 22:03:26 CET 2021] _w='apache'
[Mi 20. Jan 22:03:26 CET 2021] _currentRoot='apache'
[Mi 20. Jan 22:03:26 CET 2021] entry='"type":"http-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/10225269627/u8-fbQ","token":"HVl4eLBCSgolIjCtT0UABxvtaOjHV243oCq5bAc00qg"'
[Mi 20. Jan 22:03:26 CET 2021] token='HVl4eLBCSgolIjCtT0UABxvtaOjHV243oCq5bAc00qg'
[Mi 20. Jan 22:03:26 CET 2021] uri='https://acme-v02.api.letsencrypt.org/acme/chall-v3/10225269627/u8-fbQ'
[Mi 20. Jan 22:03:26 CET 2021] keyauthorization='HVl4eLBCSgolIjCtT0UABxvtaOjHV243oCq5bAc00qg.Umw3_GvDBnulnp_-XTjrUU9uNcwlnV0gIFrGm46yasA'
[Mi 20. Jan 22:03:26 CET 2021] dvlist='server.domain.de#HVl4eLBCSgolIjCtT0UABxvtaOjHV243oCq5bAc00qg.Umw3_GvDBnulnp_-XTjrUU9uNcwlnV0gIFrGm46yasA#https://acme-v02.api.letsencrypt.org/acme/chall-v3/10225269627/u8-fbQ#http-01#apache'
[Mi 20. Jan 22:03:26 CET 2021] d
[Mi 20. Jan 22:03:26 CET 2021] vlist='server.domain.de#HVl4eLBCSgolIjCtT0UABxvtaOjHV243oCq5bAc00qg.Umw3_GvDBnulnp_-XTjrUU9uNcwlnV0gIFrGm46yasA#https://acme-v02.api.letsencrypt.org/acme/chall-v3/10225269627/u8-fbQ#http-01#apache,'
[Mi 20. Jan 22:03:26 CET 2021] d='server.domain.de'
[Mi 20. Jan 22:03:26 CET 2021] ok, let's start to verify
[Mi 20. Jan 22:03:26 CET 2021] Verifying: server.domain.de
[Mi 20. Jan 22:03:26 CET 2021] d='server.domain.de'
[Mi 20. Jan 22:03:26 CET 2021] keyauthorization='HVl4eLBCSgolIjCtT0UABxvtaOjHV243oCq5bAc00qg.Umw3_GvDBnulnp_-XTjrUU9uNcwlnV0gIFrGm46yasA'
[Mi 20. Jan 22:03:26 CET 2021] uri='https://acme-v02.api.letsencrypt.org/acme/chall-v3/10225269627/u8-fbQ'
[Mi 20. Jan 22:03:26 CET 2021] _currentRoot='apache'
[Mi 20. Jan 22:03:26 CET 2021] wellknown_path='/home/.acme'
[Mi 20. Jan 22:03:26 CET 2021] writing token:HVl4eLBCSgolIjCtT0UABxvtaOjHV243oCq5bAc00qg to /home/.acme/HVl4eLBCSgolIjCtT0UABxvtaOjHV243oCq5bAc00qg
[Mi 20. Jan 22:03:26 CET 2021] url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/10225269627/u8-fbQ'
[Mi 20. Jan 22:03:26 CET 2021] payload='{}'
[Mi 20. Jan 22:03:26 CET 2021] POST
[Mi 20. Jan 22:03:26 CET 2021] _post_url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/10225269627/u8-fbQ'
[Mi 20. Jan 22:03:26 CET 2021] _CURL='curl --silent --dump-header /root/.acme.sh/http.header -L -g '
[Mi 20. Jan 22:03:27 CET 2021] _ret='0'
[Mi 20. Jan 22:03:27 CET 2021] code='200'
[Mi 20. Jan 22:03:27 CET 2021] trigger validation code: 200
[Mi 20. Jan 22:03:27 CET 2021] sleep 2 secs to verify
[Mi 20. Jan 22:03:29 CET 2021] checking
[Mi 20. Jan 22:03:29 CET 2021] url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/10225269627/u8-fbQ'
[Mi 20. Jan 22:03:29 CET 2021] payload
[Mi 20. Jan 22:03:29 CET 2021] POST
[Mi 20. Jan 22:03:29 CET 2021] _post_url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/10225269627/u8-fbQ'
[Mi 20. Jan 22:03:29 CET 2021] _CURL='curl --silent --dump-header /root/.acme.sh/http.header -L -g '
[Mi 20. Jan 22:03:29 CET 2021] _ret='0'
[Mi 20. Jan 22:03:29 CET 2021] code='200'
[Mi 20. Jan 22:03:30 CET 2021] server.domain.de:Verify error:Invalid response from http://server.domain.de/.well-known/acme-challenge/HVl4eLBCSgolIjCtT0UABxvtaOjHV243oCq5bAc00qg [134.130.60.10]:
[Mi 20. Jan 22:03:30 CET 2021] Debug: get token url.
[Mi 20. Jan 22:03:30 CET 2021] GET
[Mi 20. Jan 22:03:30 CET 2021] url='http://server.domain.de/.well-known/acme-challenge/HVl4eLBCSgolIjCtT0UABxvtaOjHV243oCq5bAc00qg'
[Mi 20. Jan 22:03:30 CET 2021] timeout=1
[Mi 20. Jan 22:03:30 CET 2021] _CURL='curl --silent --dump-header /root/.acme.sh/http.header -L -g --connect-timeout 1'
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL was not found on this server.</p>
<hr>
<address>Apache/2.4.41 (Ubuntu) Server at server.domain.de Port 80</address>
</body></html>
[Mi 20. Jan 22:03:30 CET 2021] ret='0'
[Mi 20. Jan 22:03:30 CET 2021] Skip for removelevel:
[Mi 20. Jan 22:03:30 CET 2021] pid
[Mi 20. Jan 22:03:30 CET 2021] Using config home:/root/.acme.sh
[Mi 20. Jan 22:03:30 CET 2021] ACME_DIRECTORY='https://acme-v02.api.letsencrypt.org/directory'
[Mi 20. Jan 22:03:30 CET 2021] httpdconfname='apache2.conf'
[Mi 20. Jan 22:03:30 CET 2021] httpdroot='/etc/apache2'
[Mi 20. Jan 22:03:30 CET 2021] httpdconf='/etc/apache2/apache2.conf'
[Mi 20. Jan 22:03:30 CET 2021] httpdconfname='apache2.conf'
[Mi 20. Jan 22:03:30 CET 2021] Restored: /etc/apache2/apache2.conf.
[Mi 20. Jan 22:03:30 CET 2021] Restored successfully.
[Mi 20. Jan 22:03:30 CET 2021] No need to restore nginx, skip.
[Mi 20. Jan 22:03:30 CET 2021] _clearupdns
[Mi 20. Jan 22:03:30 CET 2021] dns_entries
[Mi 20. Jan 22:03:30 CET 2021] skip dns.
[Mi 20. Jan 22:03:30 CET 2021] _on_issue_err
[Mi 20. Jan 22:03:30 CET 2021] Please add '--debug' or '--log' to check more details.
[Mi 20. Jan 22:03:30 CET 2021] See: https://github.com/acmesh-official/acme.sh/wiki/How-to-debug-acme.sh
[Mi 20. Jan 22:03:30 CET 2021] url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/10225269627/u8-fbQ'
[Mi 20. Jan 22:03:30 CET 2021] payload='{}'
[Mi 20. Jan 22:03:30 CET 2021] POST
[Mi 20. Jan 22:03:30 CET 2021] _post_url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/10225269627/u8-fbQ'
[Mi 20. Jan 22:03:30 CET 2021] _CURL='curl --silent --dump-header /root/.acme.sh/http.header -L -g '
[Mi 20. Jan 22:03:31 CET 2021] _ret='0'
[Mi 20. Jan 22:03:31 CET 2021] code='400'
[Mi 20. Jan 22:03:31 CET 2021] socat doesn't exist.
[Mi 20. Jan 22:03:31 CET 2021] Diagnosis versions:
openssl:openssl
OpenSSL 1.1.1f 31 Mar 2020
apache:
Server version: Apache/2.4.41 (Ubuntu)
Server built: 2020-08-12T19:46:17
Server's Module Magic Number: 20120211:88
Server loaded: APR 1.6.5, APR-UTIL 1.6.1
Compiled using: APR 1.6.5, APR-UTIL 1.6.1
Architecture: 64-bit
Server MPM: prefork
threaded: no
forked: yes (variable process count)
Server compiled with....
-D APR_HAS_SENDFILE
-D APR_HAS_MMAP
-D APR_HAVE_IPV6 (IPv4-mapped addresses enabled)
-D APR_USE_SYSVSEM_SERIALIZE
-D APR_USE_PTHREAD_SERIALIZE
-D SINGLE_LISTEN_UNSERIALIZED_ACCEPT
-D APR_HAS_OTHER_CHILD
-D AP_HAVE_RELIABLE_PIPED_LOGS
-D DYNAMIC_MODULE_LIMIT=256
-D HTTPD_ROOT="/etc/apache2"
-D SUEXEC_BIN="/usr/lib/apache2/suexec"
-D DEFAULT_PIDLOG="/var/run/apache2.pid"
-D DEFAULT_SCOREBOARD="logs/apache_runtime_status"
-D DEFAULT_ERRORLOG="logs/error_log"
-D AP_TYPES_CONFIG_FILE="mime.types"
-D SERVER_CONFIG_FILE="apache2.conf"
nginx:
nginx doesn't exist.
socat:
Ich hoffe, ihr könnt mir weiterhelfen. Da ich schon zu viele Versuche heute gestartet habe, kann ich es erst morgen wieder versuchen..