Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Do you want to continue with Nginx vhost site creation ? [y/n] y
- Enter vhost domain name to add (without www. prefix): domain.com
- Create a self-signed SSL certificate Nginx vhost? [y/n]: n
- Get Letsencrypt SSL certificate Nginx vhost? [y/n]: y
- ---------------------------------------------------------------
- To get Letsencrypt SSL certificate, you must already have updated intended
- domain vhost name's DNS A record to this server's IP addresss.
- If top level domain, DNS A record is needed also for www. version of domain
- otherwise, Letsencrypt domain name validation will fail.
- ---------------------------------------------------------------
- continue [y/n] ? y
- domain.com is a top level domain
- your server IPv4 IP address: 103.105.xxx
- domain.com IPv4 DNS A record is behind Cloudflare IPs
- current DNS A record IPv4 address for domain.com is: 104.28.31.148 104.28.30.14 8
- domain.com IPv6 DNS AAAA record is behind Cloudflare IPs
- current DNS AAAA record IPv6 address for domain.com is: 2606:4700:30::681c:1f94 2606:4700:30::681c:1e94
- www.domain.com IPv4 DNS A record is behind Cloudflare IPs
- current DNS A record IP address for www.domain.com is: 104.28.31.148 104.28.30. 148
- www.domain.com IPv6 DNS AAAA record is behind Cloudflare IPs
- current DNS AAAA record IPv6 address for www.domain.com is: 2606:4700:30::681c: 1e94 2606:4700:30::681c:1f94
- Do you want to continue [y/n]: y
- ------------------------------------------------
- You have 4 options:
- ------------------------------------------------
- 1. issue staging test cert with HTTP + HTTPS (untrusted)
- 2. issue staging test cert with HTTPS default (untrusted)
- 3. issue live cert with HTTP + HTTPS (trusted)
- 4. issue live cert with HTTPS default (trusted)
- Enter option number 1-4: 4
- Create FTP username for vhost domain (enter username): FTPUSER
- Auto generate FTP password (recommended) [y/n]: y
- FTP username you entered: FTPUSER
- FTP password auto generated: &S)--d!;D%%4hi$U(y`(+
- Password:
- Enter it again:
- ---------------------------------------------------------------
- SSL Vhost Setup...
- ---------------------------------------------------------------
- --2019-04-01 07:17:12-- https://support.cloudflare.com/hc/en-us/article_attachm ents/201243967/origin-pull-ca.pem
- Resolving support.cloudflare.com... 104.16.52.111, 104.16.54.111, 104.16.51.111, ...
- Connecting to support.cloudflare.com|104.16.52.111|:443... connected.
- HTTP request sent, awaiting response... 200 OK
- Length: 2151 (2.1K) [application/x-x509-ca-cert]
- Saving to: ‘origin.crt’
- 0K .. 100% 14.4M=0s
- 2019-04-01 07:17:13 (14.4 MB/s) - ‘origin.crt’ saved [2151/2151]
- ---------------------------------------------------------------
- Generating self signed SSL certificate...
- CSR file can also be used to be submitted for paid SSL certificates
- If using for paid SSL certificates be sure to keep both private key and CSR safe
- creating CSR File: domain.com.csr
- creating private key: domain.com.key
- creating self-signed SSL certificate: domain.com.crt
- Generating a 2048 bit RSA private key
- ...........................................................+++
- ....................................................+++
- writing new private key to 'domain.com.key'
- -----
- Signature ok
- subject=/C=US/ST=California/L=Los Angeles/O=domain.com/OU=domain.com/CN=domain x.com
- Getting Private key
- ---------------------------------------------------------------
- Generating dhparam.pem file - can take a few minutes...
- Generating DH parameters, 2048 bit long safe prime, generator 2
- This is going to take a long time
- ...........+.................................................................... .............................+...........................+...............+...... ................................................................................ ....................................+........................................... ........................+....................................................... ..............+.....................+........................................... ....+..........+................................................................ ................................................................................ ........................+....................................................... ................................................................................ ................................................................................ .......+........................................................................ .......................+........................................................ ......................................+......................................... ...............................................................+..........+..... ..............................................+................................. ..............+..............................+.....................+............ ................................................................................ .............................................+...........................+...... ......................................................+..................+...... .........................................................+...................... ............+.........+......................................................... ...................+............................................................ .............................................+.................................. ................................................................................ ................................................................................ ...+...................+....................+.....................+............. ......................................+......................................... ................................................................................ ...............+..........................................+..................... ................................................................................ ...............................................+................+............... ................................................................................ ..........................................................................+..... ...................................................................+............ .........+...................................................................... ................................................................................ ................................................................................ ............+..................................................+................ ...........................................+.................................... ....+........................................................................... ...........................................................+.................... ...........+..................................+................................. ...................................................................+............ ................................................................................ .....................................................+......................+... ..................................+............+......+......................... ................................................................................ .................+..............................+............................... ................................................................................ ................................................................................ ................................................................................ ................................+............................................... .............................+...........+...................................... ....................................................+........................... ...............+.........................................................+...... ................................................................................ ................................................................................ ..............................................+................................. +.......................................+....................................... .......+.................+....................................+................. .....+................................................................+......... ..........................................................+..................... ................................................................................ ................................................................................ ................................................................................ .............+.................................................................. ......+.......................................+................................. ................................................................................ ................................................................................ ................................................................................ ......+............................................................+...........+ ................................................................................ ................................................................................ ................................................................................ ..............................................................................+. ................................................................................ ................................................................................ ................................................................................ ..............................................................+................. ................................................................................ ................................................................................ ........................................................+....................... .............................+.................................................. .........................................................................+...... ................................................................................ ................................................................................ ................................................................................ ................................................................+............... ...............................................+................................ ................................+.........+..................................+.. ................................................................................ ................................................................................ ......................++*++*
- dhparam file generation time: 61.647358359
- grep: /svr-setup/openssl-1.1.1b/configdata.pm: No such file or directory
- -------------------------------------------------------------
- generated nginx include file [initial]: /usr/local/nginx/conf/autoprotect/demodo main.com/autoprotect-demodomain.com.conf
- generated nginx include file [initial]: /usr/local/nginx/conf/autoprotect/domain x.com/autoprotect-domain.com.conf
- autoprotect.sh run completed...
- Reloading nginx configuration (via systemctl): [ OK ]
- service nginx reload
- Reloading nginx configuration (via systemctl): [ OK ]
- systemctl restart pure-ftpd.service
- -------------------------------------------------------------
- ok: /usr/local/src/centminmod/addons/acmetool.sh
- /usr/local/src/centminmod/addons/acmetool.sh issue domain.com lived
- -------------------------------------------------
- acmetool.sh is in beta testing phase
- please read & provide bug reports &
- feedback for this tool via the forums
- https://centminmod.com/acmetool
- -------------------------------------------------
- continue [y/n] ? y
- -----------------------------------------------------
- updating acme.sh client...
- -----------------------------------------------------
- Cloning into 'acme.sh'...
- [Mon Apr 1 07:18:35 UTC 2019] It is recommended to install socat first.
- [Mon Apr 1 07:18:35 UTC 2019] We use socat for standalone server if you use sta ndalone mode.
- [Mon Apr 1 07:18:35 UTC 2019] If you don't use standalone mode, just ignore thi s warning.
- [Mon Apr 1 07:18:35 UTC 2019] Installing to /root/.acme.sh
- [Mon Apr 1 07:18:35 UTC 2019] Installed to /root/.acme.sh/acme.sh
- [Mon Apr 1 07:18:35 UTC 2019] Installing alias to '/root/.bashrc'
- [Mon Apr 1 07:18:35 UTC 2019] OK, Close and reopen your terminal to start using acme.sh
- [Mon Apr 1 07:18:35 UTC 2019] Installing alias to '/root/.cshrc'
- [Mon Apr 1 07:18:35 UTC 2019] Installing alias to '/root/.tcshrc'
- [Mon Apr 1 07:18:36 UTC 2019] Installing cron job
- [Mon Apr 1 07:18:36 UTC 2019] Good, bash is found, so change the shebang to use bash as preferred.
- [Mon Apr 1 07:18:37 UTC 2019] OK
- https://github.com/Neilpang/acme.sh
- v2.8.1
- -----------------------------------------------------
- acme.sh updated
- -----------------------------------------------------
- backup & remove /usr/local/nginx/conf/conf.d/domain.com.conf
- [self-signed ssl cert check] required by acmetool.sh
- [self-signed ssl] /usr/local/nginx/conf/ssl/domain.com/dhparam.pem exists
- [self-signed ssl] /usr/local/nginx/conf/ssl/domain.com/domain.com.crt exists
- [self-signed ssl] /usr/local/nginx/conf/ssl/domain.com/domain.com.key exists
- [sslvhostsetup] create /usr/local/nginx/conf/conf.d/domain.com.ssl.conf
- [non-wp] backup & remove /usr/local/nginx/conf/conf.d/domain.com.conf
- cat /usr/local/nginx/conf/ssl/domain.com/domain.com.crt.key.conf
- ssl_dhparam /usr/local/nginx/conf/ssl/domain.com/dhparam.pem;
- ssl_certificate /usr/local/nginx/conf/ssl/domain.com/domain.com.crt;
- ssl_certificate_key /usr/local/nginx/conf/ssl/domain.com/domain.com.key;
- #ssl_trusted_certificate /usr/local/nginx/conf/ssl/domain.com/domain.com-tru sted.crt;
- cp -a /usr/local/nginx/conf/conf.d/domain.com.ssl.conf /usr/local/nginx/conf/co nf.d/domain.com.ssl.conf-nonwp2
- cat /usr/local/nginx/conf/conf.d/domain.com.ssl.conf-nonwp1 /usr/local/nginx/co nf/conf.d/domain.com.ssl.conf-nonwp2 > /usr/local/nginx/conf/conf.d/domain.com .ssl.conf
- Reloading nginx configuration (via systemctl): [ OK ]
- setting HTTPS default in /usr/local/nginx/conf/conf.d/domain.com.ssl.conf
- sed -i 's|^##x# HTTPS-DEFAULT|#x# HTTPS-DEFAULT|g' "/usr/local/nginx/conf/conf.d /domain.com.ssl.conf"
- sed -i "s|#x# server {| server {|" "/usr/local/nginx/conf/conf.d/domain.com.ssl .conf"
- sed -i "s|#x# | |" "/usr/local/nginx/conf/conf.d/domain.com.ssl.conf"
- sed -i "s|#x# server_name domain.com www.domain.com;| server_name FTPUSER. com www.domain.com;|" "/usr/local/nginx/conf/conf.d/domain.com.ssl.conf"
- sed -i "s|#x# return 302 https://domain.com$request_uri;| return 302 https: //domain.com$request_uri;|" "/usr/local/nginx/conf/conf.d/domain.com.ssl.conf"
- sed -i "s|#x# include \/usr\/local\/nginx\/conf\/staticfiles.conf;| include \/usr\/local\/nginx\/conf\/staticfiles.conf;|" "/usr/local/nginx/conf/conf.d/wai fu2x.com.ssl.conf"
- sed -i "s|#x# }| }|" "/usr/local/nginx/conf/conf.d/domain.com.ssl.conf"
- remove /usr/local/nginx/conf/conf.d/domain.com.conf
- grep 'root' /usr/local/nginx/conf/conf.d/domain.com.ssl.conf
- root /home/nginx/domains/domain.com/public;
- -----------------------------------------------------------
- issue & install letsencrypt ssl certificate for domain.com
- -----------------------------------------------------------
- testcert value = lived
- /root/.acme.sh/acme.sh --issue -d domain.com -d www.domain.com --days 60 -w /h ome/nginx/domains/domain.com/public -k ec-256 --useragent centminmod-centos7-ac mesh-webroot --log /root/centminlogs/acmetool.sh-debug-log-010419-071829.log --l og-level 2
- [Mon Apr 1 07:18:39 UTC 2019] Registering account
- [Mon Apr 1 07:18:41 UTC 2019] Registered
- [Mon Apr 1 07:18:41 UTC 2019] ACCOUNT_THUMBPRINT='99lqBwMq4_D2bcrdVD5XT5z-oAAJm 60SArQZ0pim45Y'
- [Mon Apr 1 07:18:41 UTC 2019] Creating domain key
- [Mon Apr 1 07:18:41 UTC 2019] The domain key is here: /root/.acme.sh/FTPUSER.co m_ecc/domain.com.key
- [Mon Apr 1 07:18:41 UTC 2019] Multi domain='DNS:domain.com,DNS:www.domain.com '
- [Mon Apr 1 07:18:41 UTC 2019] Getting domain auth token for each domain
- [Mon Apr 1 07:18:43 UTC 2019] Getting webroot for domain='domain.com'
- [Mon Apr 1 07:18:43 UTC 2019] Getting webroot for domain='www.domain.com'
- [Mon Apr 1 07:18:43 UTC 2019] Verifying: domain.com
- [Mon Apr 1 07:18:46 UTC 2019] Pending
- [Mon Apr 1 07:18:49 UTC 2019] domain.com:Verify error:Fetching https://FTPUSER .com/.well-known/acme-challenge/jH-QJN9Yeb9TgIxy2HwBBUDfY1YlU16vBt132IHnO9g: Too many redirects
- [Mon Apr 1 07:18:49 UTC 2019] Please check log file for more details: /root/cen tminlogs/acmetool.sh-debug-log-010419-071829.log
- LECHECK = 1
- log files saved at /root/centminlogs
- -rw-r--r--. 1 root root 67K Apr 1 07:18 acmetool.sh-debug-log-010419-071829.lo g
- -rw-r--r--. 1 root root 5.0K Apr 1 07:18 acmesh-issue_010419-071829.log
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement