Comments (7)
Great issue. Yes, we could have a waiting loop that verifies the signatures and checks to see if the file is being hosted correctly,
from acme-nosudo.
I use this (pardon my noob python, please)
while True:
url = "http://{}/.well-known/acme-challenge/{}".format(domain, token)
try:
resp = urllib2.urlopen(url)
result = resp.read()
if result == keyauthorization:
return
sys.stderr.write("\nGot:\n{}Need:\n{}\n".format(result, keyauthorization))
except urllib2.HTTPError as e:
sys.stderr.write(e.code)
pause()
from acme-nosudo.
I have a tweak just for this. Step 4: validation(on live server). You dont need root for this.
sign everything like usual(im doing on my local box here)
now, instead of giving the python script to run on the server, do this:
find your remote live server and ssh into it in another window
make dir(mkdir) .well-known/acme-challenge [in server root]
nano
the filename is what it asks you to run inside the python command. A zero byte file will do. type a key, delete it, then save the file.
The trick is that the filename has a period in it, but that part of the file is not actually requested.(pops a 404 on my wordpress setup), so you need to rename the file accordingly before continuing.Remove the period and everything after it.
The rest should succeed. Actually some cert servers request that you similar.All they are checking is that the domain belongs to you by telling you to serve some random filename.
No need to superseed an already running http service or server.Use whats running.Besides, shared hosts dont give you root access.
from acme-nosudo.
edit: close. It looks like the filename is correct but the entire key string given in the python file is needed inside the file. so forget the period for the filename but put everything in the file.
from acme-nosudo.
Hello Richard (JazzMaster),
I was also trying to install it on shared host. Provided that the shared host doesn't give me root access, the challenge step (STEP 4) was failed.
Could you please tell me how to go about it step-by-step if you know?
What file to create?
At what time during the script execution?
I would appreciate your help.
Thank you!
from acme-nosudo.
Never mind. I did it myself.
Thank you. :)
from acme-nosudo.
I've decided that I don't want to verify the file is being served properly. Let's Encrypt's verification will fail, so you'll see something is wrong anyway, and can retry again after you've fixed things.
from acme-nosudo.
Related Issues (20)
- Will there be a protocol V2 update? HOT 1
- Cannot create certificates for v6-only hosts HOT 1
- ModuleNotFoundError: No module named 'urllib2' HOT 4
- > (I might be quite wrong with all the following, it's mostly an observation)
- what does this error mean? HOT 1
- Syntax error or user error??? HOT 2
- Python script does not work for IPv6 HOT 1
- agreement url changed HOT 1
- Stopped working in Windows HOT 1
- issue with rsa -in user.key -pubout > user.pub HOT 1
- Steps produce two certificates ? HOT 2
- Renewal fails with error HOT 2
- Syntax error in: pub_exp = "0{0}".format(pub_exp) if len(pub_exp) % 2 else pub_exp HOT 2
- Dadanationnonprofit HOT 1
- Does this script also record IP address? HOT 1
- Spurious bad-nonce replies from letsencrypt, cause repeated script fail HOT 3
- Action required: Let's Encrypt subscriber agreement URL Change HOT 3
- acme registration id? HOT 1
- sign_csr.py fails on debian stretch with OpenSSL 1.1.0f 25 May 2017 HOT 2
- Please rename project HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from acme-nosudo.