Advertisement
Guest User

Untitled

a guest
Jun 18th, 2017
586
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. 2017-06-18 20:35:44,960:DEBUG:certbot.main:certbot version: 0.15.0
  2. 2017-06-18 20:35:44,964:DEBUG:certbot.main:Arguments: ['--nginx', '--preferred-challenges', 'tls-sni-01', '-d', 'milosz.bestpony.ml']
  3. 2017-06-18 20:35:44,967:DEBUG:certbot.main:Discovered plugins:
  4. PluginsRegistry(PluginEntryPoint#manual,PluginEntryPoint#nginx,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot)
  5. 2017-06-18 20:35:45,038:DEBUG:certbot.log:Root logging level set at 20
  6. 2017-06-18 20:35:45,041:INFO:certbot.log:Saving debug log to /var/log/letsencrypt/letsencrypt.log
  7. 2017-06-18 20:35:45,044:DEBUG:certbot.plugins.selection:Requested authenticator nginx and installer nginx
  8. 2017-06-18 20:35:46,111:DEBUG:certbot.plugins.selection:Single candidate plugin: * nginx
  9. Description: Nginx Web Server plugin - Alpha
  10. Interfaces: IAuthenticator, IInstaller, IPlugin
  11. Entry point: nginx = certbot_nginx.configurator:NginxConfigurator
  12. Initialized: <certbot_nginx.configurator.NginxConfigurator object at 0x7f44230df8d0>
  13. Prep: True
  14. 2017-06-18 20:35:46,118:DEBUG:certbot.plugins.selection:Selected authenticator <certbot_nginx.configurator.NginxConfigurator object at 0x7f44230df8d0> and installer
  15. <certbot_nginx.configurator.NginxConfigurator object at 0x7f44230df8d0>
  16. 2017-06-18 20:35:46,136:DEBUG:certbot.main:Picked account:
  17. <Account(RegistrationResource(body=Registration(key=JWKRSA(key=<ComparableRSAKey(<cryptography.hazmat.backends.openssl.rsa._RSAPublicKey object at 0x7f441c53ccc0>)>),
  18. contact=('mailto:lapsio3@gmail.com',), agreement='https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf', status=None),
  19. uri='https://acme-v01.api.letsencrypt.org/acme/reg/17378808', new_authzr_uri='https://acme-v01.api.letsencrypt.org/acme/new-authz',
  20. terms_of_service='https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf'), fef84232bd229219d4bff3b1312bcd22, Meta(creation_dt=datetime.datetime(2017, 6, 18, 20, 19, 9,
  21. tzinfo=<UTC>), creation_host='service'))>
  22. 2017-06-18 20:35:46,142:DEBUG:acme.client:Sending GET request to https://acme-v01.api.letsencrypt.org/directory.
  23. 2017-06-18 20:35:46,152:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-v01.api.letsencrypt.org
  24. 2017-06-18 20:35:46,510:DEBUG:urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 352
  25. 2017-06-18 20:35:46,514:DEBUG:acme.client:Received response:
  26. HTTP 200
  27. Server: nginx
  28. Content-Type: application/json
  29. Content-Length: 352
  30. Boulder-Request-Id: e9vd0tOke41IU8i9u86iSxSd72eYnz5E14nwsLVX3nI
  31. Replay-Nonce: kh1RfSULNJOoFtQEEt3gUSt8l81guW1c34qTLEmm5bQ
  32. X-Frame-Options: DENY
  33. Strict-Transport-Security: max-age=604800
  34. Expires: Sun, 18 Jun 2017 20:20:33 GMT
  35. Cache-Control: max-age=0, no-cache, no-store
  36. Pragma: no-cache
  37. Date: Sun, 18 Jun 2017 20:20:33 GMT
  38. Connection: keep-alive
  39.  
  40. b'{\n "key-change": "https://acme-v01.api.letsencrypt.org/acme/key-change",\n "new-authz": "https://acme-v01.api.letsencrypt.org/acme/new-authz",\n "new-cert":
  41. "https://acme-v01.api.letsencrypt.org/acme/new-cert",\n "new-reg": "https://acme-v01.api.letsencrypt.org/acme/new-reg",\n "revoke-cert":
  42. "https://acme-v01.api.letsencrypt.org/acme/revoke-cert"\n}'
  43. 2017-06-18 20:35:46,517:INFO:certbot.main:Obtaining a new certificate
  44. 2017-06-18 20:35:46,521:DEBUG:acme.client:Requesting fresh nonce
  45. 2017-06-18 20:35:46,521:DEBUG:acme.client:Sending HEAD request to https://acme-v01.api.letsencrypt.org/acme/new-authz.
  46. 2017-06-18 20:35:46,721:DEBUG:urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "HEAD /acme/new-authz HTTP/1.1" 405 0
  47. 2017-06-18 20:35:46,725:DEBUG:acme.client:Received response:
  48. HTTP 405
  49. Server: nginx
  50. Content-Type: application/problem+json
  51. Content-Length: 91
  52. Allow: POST
  53. Boulder-Request-Id: ZUq1tixIOJ74fpZOpnKNxg672Utk-zG3OtEYyLHQlNs
  54. Replay-Nonce: 75WGskpjTn0DT5DLKgDrEOqg2Br4pm1MzsUUy0OHXOY
  55. Expires: Sun, 18 Jun 2017 20:20:33 GMT
  56. Cache-Control: max-age=0, no-cache, no-store
  57. Pragma: no-cache
  58. Date: Sun, 18 Jun 2017 20:20:33 GMT
  59. Connection: keep-alive
  60.  
  61. b''
  62. 2017-06-18 20:35:46,726:DEBUG:acme.client:Storing nonce: 75WGskpjTn0DT5DLKgDrEOqg2Br4pm1MzsUUy0OHXOY
  63. 2017-06-18 20:35:46,729:DEBUG:acme.client:JWS payload:
  64. b'{\n "identifier": {\n "type": "dns",\n "value": "milosz.bestpony.ml"\n },\n "resource": "new-authz"\n}'
  65. 2017-06-18 20:35:46,744:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/new-authz:
  66. {
  67. "protected":
  68. "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",
  69. "signature":
  70. "sWTcOLonvuJ4TnntjDH9AcZHqU552Sg9YgAXgPvKKlOUer51s0XQrYQ1bzv9FBI0cnbsAkwhU4r82s4ELbslUYZ8mqK7HYk7YL285Cp_tdKx4YgSW1I7aSdFTNmgPWdWYTmwDlxbI6VA4F6HtQvEsYBSkQWm1M8_pcdvvXIXcRHVnlwOvmVh8gfXjXjB3zginBqCkDur14glxfM5mdfhNfr2nYWfd9WjgKnh0GWSZDmwwlfRHdOmPvSbwMxJDXfClufkm54ehiwjjnZF9PFsFlQUBzjaIrjp9mgEEq_J0kmKWuPybcR8bU8pqH0yCDUemexQyaMDhfUEA_9kYAQ2Yg",
  71. "payload": "ewogICJpZGVudGlmaWVyIjogewogICAgInR5cGUiOiAiZG5zIiwKICAgICJ2YWx1ZSI6ICJtaWxvc3ouYmVzdHBvbnkubWwiCiAgfSwKICAicmVzb3VyY2UiOiAibmV3LWF1dGh6Igp9"
  72. }
  73. 2017-06-18 20:35:46,980:DEBUG:urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/new-authz HTTP/1.1" 201 1006
  74. 2017-06-18 20:35:46,982:DEBUG:acme.client:Received response:
  75. HTTP 201
  76. Server: nginx
  77. Content-Type: application/json
  78. Content-Length: 1006
  79. Boulder-Request-Id: f4odtHCh9hvQutK1kHfLSFG5jHCOi9E5EzFruvzPTdc
  80. Boulder-Requester: 17378808
  81. Link: <https://acme-v01.api.letsencrypt.org/acme/new-cert>;rel="next"
  82. Location: https://acme-v01.api.letsencrypt.org/acme/authz/6Mk_9CahyNUzF1sVLTwiwGbVtX-umIvgq0xa2AMUUpI
  83. Replay-Nonce: rtyZP6ZECzMuV9gPfecYWDGQhkfXKcq8zpVEWEmFiiM
  84. X-Frame-Options: DENY
  85. Strict-Transport-Security: max-age=604800
  86. Expires: Sun, 18 Jun 2017 20:20:33 GMT
  87. Cache-Control: max-age=0, no-cache, no-store
  88. Pragma: no-cache
  89. Date: Sun, 18 Jun 2017 20:20:33 GMT
  90. Connection: keep-alive
  91.  
  92. b'{\n "identifier": {\n "type": "dns",\n "value": "milosz.bestpony.ml"\n },\n "status": "pending",\n "expires": "2017-06-25T20:20:33.902809308Z",\n "challenges": [\n
  93. {\n "type": "tls-sni-01",\n "status": "pending",\n "uri":
  94. "https://acme-v01.api.letsencrypt.org/acme/challenge/6Mk_9CahyNUzF1sVLTwiwGbVtX-umIvgq0xa2AMUUpI/1367837998",\n "token": "YNrxWaQ2U2ONeky0QrE1X28igMB-VZIoAmTbMphbhIk"\n },\n
  95. {\n "type": "http-01",\n "status": "pending",\n "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/6Mk_9CahyNUzF1sVLTwiwGbVtX-umIvgq0xa2AMUUpI/1367837999",\n
  96. "token": "CyJlfRhiQ0jBVQdClDQFv-2OzdYkpT_5_vZ6JWX1aq0"\n },\n {\n "type": "dns-01",\n "status": "pending",\n "uri":
  97. "https://acme-v01.api.letsencrypt.org/acme/challenge/6Mk_9CahyNUzF1sVLTwiwGbVtX-umIvgq0xa2AMUUpI/1367838000",\n "token": "ATCI7z1BYyzPicjJVn0_b1Wzfuoung3BAmogE26t2jY"\n }\n
  98. ],\n "combinations": [\n [\n 1\n ],\n [\n 2\n ],\n [\n 0\n ]\n ]\n}'
  99. 2017-06-18 20:35:46,983:DEBUG:acme.client:Storing nonce: rtyZP6ZECzMuV9gPfecYWDGQhkfXKcq8zpVEWEmFiiM
  100. 2017-06-18 20:35:46,985:INFO:certbot.auth_handler:Performing the following challenges:
  101. 2017-06-18 20:35:46,986:INFO:certbot.auth_handler:tls-sni-01 challenge for milosz.bestpony.ml
  102. 2017-06-18 20:35:47,171:DEBUG:certbot.crypto_util:Generating key (1024 bits): /var/lib/letsencrypt/snakeoil/0004_key.pem
  103. 2017-06-18 20:35:47,523:DEBUG:certbot.reverter:Creating backup of /etc/nginx/nginx.conf
  104. 2017-06-18 20:35:47,525:DEBUG:certbot.reverter:Creating backup of /etc/nginx/mime.types
  105. 2017-06-18 20:35:47,547:DEBUG:certbot_nginx.parser:Writing nginx conf tree to /etc/nginx/nginx.conf:
  106.  
  107. #user html;
  108. worker_processes 1;
  109.  
  110. error_log /var/log/nginx/error.log info;
  111. #error_log logs/error.log;
  112. #error_log logs/error.log notice;
  113. #error_log logs/error.log info;
  114.  
  115. #pid logs/nginx.pid;
  116.  
  117.  
  118. events {
  119. worker_connections 1024;
  120. }
  121.  
  122.  
  123. http {
  124. include /etc/letsencrypt/le_tls_sni_01_cert_challenge.conf;
  125. server_names_hash_bucket_size 128;
  126. include mime.types;
  127. default_type application/octet-stream;
  128.  
  129. sendfile on;
  130. keepalive_timeout 65;
  131.  
  132. server {
  133. listen 80;
  134. server_name localhost;
  135.  
  136. location / {
  137. root /usr/share/nginx/html;
  138. index index.html index.htm;
  139. }
  140.  
  141. error_page 500 502 503 504 /50x.html;
  142. location = /50x.html {
  143. root /usr/share/nginx/html;
  144. }
  145. }
  146.  
  147.  
  148. server {
  149. listen 44080;
  150. access_log /var/log/nginx/root.access.log;
  151.  
  152. location / {
  153. root /usr/share/nginx/html;
  154. index index.html index.htm;
  155. }
  156.  
  157. error_page 500 502 503 504 /50x.html;
  158. location = /50x.html {
  159. root /usr/share/nginx/html;
  160. }
  161. }
  162.  
  163.  
  164.  
  165.  
  166.  
  167.  
  168.  
  169.  
  170. server {
  171. listen 44080;
  172. server_name ogrygorenko.ddns.net;
  173. server_name_in_redirect off;
  174. port_in_redirect off;
  175. proxy_set_header Host $host:80;
  176. location / {proxy_pass http://10.0.3.2:44380;}
  177. error_page 500 502 503 504 /50x.html;
  178. location = /50x.html {root /usr/share/nginx/html;}
  179. }
  180.  
  181.  
  182. server {
  183. listen 44080;
  184. server_name exalex.bestpony.ml;
  185. server_name_in_redirect off;
  186. port_in_redirect off;
  187. proxy_set_header Host $host:80;
  188. location / {proxy_pass http://10.0.3.2:44380;}
  189. error_page 500 502 503 504 /50x.html;
  190. location = /50x.html {root /usr/share/nginx/html;}
  191. }
  192.  
  193. server {
  194. listen 44080;
  195. server_name milosz.bestpony.ml;
  196. server_name_in_redirect off;
  197. port_in_redirect off;
  198. proxy_set_header Host $host:80;
  199. location / {proxy_pass http://10.0.2.2:44280;}
  200. error_page 500 502 503 504 /50x.html;
  201. location = /50x.html {root /usr/share/nginx/html;}
  202.  
  203. listen 443 ssl; # managed by Certbot
  204. ssl_certificate /var/lib/letsencrypt/snakeoil/0004_cert.pem; # managed by Certbot
  205. ssl_certificate_key /var/lib/letsencrypt/snakeoil/0004_key.pem; # managed by Certbot
  206. include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
  207. }
  208.  
  209. server {
  210. listen 44080;
  211. server_name lapsio.bestpony.ml;
  212. server_name_in_redirect off;
  213. port_in_redirect off;
  214. proxy_set_header Host $host:80;
  215. location / {proxy_pass http://10.0.1.2:44180;}
  216. error_page 500 502 503 504 /50x.html;
  217. location = /50x.html {root /usr/share/nginx/html;}
  218. }
  219.  
  220.  
  221.  
  222. }
  223.  
  224. 2017-06-18 20:35:48,596:INFO:certbot.auth_handler:Waiting for verification...
  225. 2017-06-18 20:35:48,602:DEBUG:acme.client:JWS payload:
  226. b'{\n "resource": "challenge",\n "keyAuthorization": "YNrxWaQ2U2ONeky0QrE1X28igMB-VZIoAmTbMphbhIk.ryrzSPEF2uswwW-ivQNHzYq33XJ1tvG4r4GoZW2CJrY",\n "type": "tls-sni-01"\n}'
  227. 2017-06-18 20:35:48,616:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/challenge/6Mk_9CahyNUzF1sVLTwiwGbVtX-umIvgq0xa2AMUUpI/1367837998:
  228. {
  229. "protected":
  230. "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",
  231. "signature":
  232. "mD7omEsUOiz0MCjZNoRLsfO_u6CPp1QslhFHEP6i3uy-qWM5mpepVH6bBnRYEpKv_Yav5dM1NT17L3zelQx2eDpBLH65xRCYUAYX_bzExIut9YGryOtUJNUBsNgktd0107SqLYpeLNbvA7u1dAovN3hfVezmEp5Ijfs0dkpx_RjmPJF138VHTel7PQqw6IGbLKOAwqFqwWGSfSJ-aeSWLrQiGDaTs_oVFtiVVvQ8btXWREQlsm0mPUwCeJW-eAuDegTEhWINInVFZkppZ0v7QPoL_PYHTTysP0psEu0a1FmHJtTU0VaHY7ZLMCCgZjQ-Ji4o3NprjebfuWm51Nz-6Q",
  233. "payload":
  234. "ewogICJyZXNvdXJjZSI6ICJjaGFsbGVuZ2UiLAogICJrZXlBdXRob3JpemF0aW9uIjogIllOcnhXYVEyVTJPTmVreTBRckUxWDI4aWdNQi1WWklvQW1UYk1waGJoSWsucnlyelNQRUYydXN3d1ctaXZRTkh6WXEzM1hKMXR2RzRyNEdvWlcyQ0pyWSIsCiAgInR5cGUiOiAidGxzLXNuaS0wMSIKfQ"
  235. }
  236. 2017-06-18 20:35:48,852:DEBUG:urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/challenge/6Mk_9CahyNUzF1sVLTwiwGbVtX-umIvgq0xa2AMUUpI/1367837998 HTTP/1.1"
  237. 202 339
  238. 2017-06-18 20:35:48,857:DEBUG:acme.client:Received response:
  239. HTTP 202
  240. Server: nginx
  241. Content-Type: application/json
  242. Content-Length: 339
  243. Boulder-Request-Id: eLY1qystc15i1QF3r9VZKRYzgGDLoTsu06KrfOReusI
  244. Boulder-Requester: 17378808
  245. Link: <https://acme-v01.api.letsencrypt.org/acme/authz/6Mk_9CahyNUzF1sVLTwiwGbVtX-umIvgq0xa2AMUUpI>;rel="up"
  246. Location: https://acme-v01.api.letsencrypt.org/acme/challenge/6Mk_9CahyNUzF1sVLTwiwGbVtX-umIvgq0xa2AMUUpI/1367837998
  247. Replay-Nonce: ZV0kNAI0wVVsEILdInXWJYIjWqCrgqdNRZbuFZPu9MA
  248. Expires: Sun, 18 Jun 2017 20:20:35 GMT
  249. Cache-Control: max-age=0, no-cache, no-store
  250. Pragma: no-cache
  251. Date: Sun, 18 Jun 2017 20:20:35 GMT
  252. Connection: keep-alive
  253.  
  254. b'{\n "type": "tls-sni-01",\n "status": "pending",\n "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/6Mk_9CahyNUzF1sVLTwiwGbVtX-umIvgq0xa2AMUUpI/1367837998",\n
  255. "token": "YNrxWaQ2U2ONeky0QrE1X28igMB-VZIoAmTbMphbhIk",\n "keyAuthorization": "YNrxWaQ2U2ONeky0QrE1X28igMB-VZIoAmTbMphbhIk.ryrzSPEF2uswwW-ivQNHzYq33XJ1tvG4r4GoZW2CJrY"\n}'
  256. 2017-06-18 20:35:48,858:DEBUG:acme.client:Storing nonce: ZV0kNAI0wVVsEILdInXWJYIjWqCrgqdNRZbuFZPu9MA
  257. 2017-06-18 20:35:51,863:DEBUG:acme.client:Sending GET request to https://acme-v01.api.letsencrypt.org/acme/authz/6Mk_9CahyNUzF1sVLTwiwGbVtX-umIvgq0xa2AMUUpI.
  258. 2017-06-18 20:35:52,073:DEBUG:urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "GET /acme/authz/6Mk_9CahyNUzF1sVLTwiwGbVtX-umIvgq0xa2AMUUpI HTTP/1.1" 200 1528
  259. 2017-06-18 20:35:52,075:DEBUG:acme.client:Received response:
  260. HTTP 200
  261. Server: nginx
  262. Content-Type: application/json
  263. Content-Length: 1528
  264. Boulder-Request-Id: fuG_7Ap6DuveMGs8KbMfNm0zd14sI7HB4kjuV2aqpU4
  265. Link: <https://acme-v01.api.letsencrypt.org/acme/new-cert>;rel="next"
  266. Replay-Nonce: EEXs6gdaHZIaIPj803bri1g-0Ta0nl1QWMu0cjXulf0
  267. X-Frame-Options: DENY
  268. Strict-Transport-Security: max-age=604800
  269. Expires: Sun, 18 Jun 2017 20:20:39 GMT
  270. Cache-Control: max-age=0, no-cache, no-store
  271. Pragma: no-cache
  272. Date: Sun, 18 Jun 2017 20:20:39 GMT
  273. Connection: keep-alive
  274.  
  275. b'{\n "identifier": {\n "type": "dns",\n "value": "milosz.bestpony.ml"\n },\n "status": "invalid",\n "expires": "2017-06-25T20:20:33Z",\n "challenges": [\n {\n
  276. "type": "tls-sni-01",\n "status": "invalid",\n "error": {\n "type": "urn:acme:error:connection",\n "detail": "Error getting validation data",\n
  277. "status": 400\n },\n "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/6Mk_9CahyNUzF1sVLTwiwGbVtX-umIvgq0xa2AMUUpI/1367837998",\n "token":
  278. "YNrxWaQ2U2ONeky0QrE1X28igMB-VZIoAmTbMphbhIk",\n "keyAuthorization": "YNrxWaQ2U2ONeky0QrE1X28igMB-VZIoAmTbMphbhIk.ryrzSPEF2uswwW-ivQNHzYq33XJ1tvG4r4GoZW2CJrY",\n
  279. "validationRecord": [\n {\n "hostname": "milosz.bestpony.ml",\n "port": "443",\n "addressesResolved": [\n "89.66.74.127"\n ],\n
  280. "addressUsed": "89.66.74.127",\n "addressesTried": []\n }\n ]\n },\n {\n "type": "http-01",\n "status": "pending",\n "uri":
  281. "https://acme-v01.api.letsencrypt.org/acme/challenge/6Mk_9CahyNUzF1sVLTwiwGbVtX-umIvgq0xa2AMUUpI/1367837999",\n "token": "CyJlfRhiQ0jBVQdClDQFv-2OzdYkpT_5_vZ6JWX1aq0"\n },\n
  282. {\n "type": "dns-01",\n "status": "pending",\n "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/6Mk_9CahyNUzF1sVLTwiwGbVtX-umIvgq0xa2AMUUpI/1367838000",\n
  283. "token": "ATCI7z1BYyzPicjJVn0_b1Wzfuoung3BAmogE26t2jY"\n }\n ],\n "combinations": [\n [\n 1\n ],\n [\n 2\n ],\n [\n 0\n ]\n ]\n}'
  284. 2017-06-18 20:35:52,079:DEBUG:certbot.reporter:Reporting to user: The following errors were reported by the server:
  285.  
  286. Domain: milosz.bestpony.ml
  287. Type: connection
  288. Detail: Error getting validation data
  289.  
  290. To fix these errors, please make sure that your domain name was entered correctly and the DNS A record(s) for that domain contain(s) the right IP address. Additionally, please check
  291. that your computer has a publicly routable IP address and that no firewalls are preventing the server from communicating with the client. If you're using the webroot plugin, you
  292. should also verify that you are serving files from the webroot path you provided.
  293. 2017-06-18 20:35:52,080:INFO:certbot.auth_handler:Cleaning up challenges
  294. 2017-06-18 20:35:54,172:DEBUG:certbot.log:Exiting abnormally:
  295. Traceback (most recent call last):
  296. File "/usr/bin/certbot", line 11, in <module>
  297. load_entry_point('certbot==0.15.0', 'console_scripts', 'certbot')()
  298. File "/usr/lib/python3.6/site-packages/certbot/main.py", line 743, in main
  299. return config.func(config, plugins)
  300. File "/usr/lib/python3.6/site-packages/certbot/main.py", line 598, in run
  301. certname, lineage)
  302. File "/usr/lib/python3.6/site-packages/certbot/main.py", line 82, in _get_and_save_cert
  303. lineage = le_client.obtain_and_enroll_certificate(domains, certname)
  304. File "/usr/lib/python3.6/site-packages/certbot/client.py", line 344, in obtain_and_enroll_certificate
  305. certr, chain, key, _ = self.obtain_certificate(domains)
  306. File "/usr/lib/python3.6/site-packages/certbot/client.py", line 313, in obtain_certificate
  307. self.config.allow_subset_of_names)
  308. File "/usr/lib/python3.6/site-packages/certbot/auth_handler.py", line 81, in get_authorizations
  309. self._respond(resp, best_effort)
  310. File "/usr/lib/python3.6/site-packages/certbot/auth_handler.py", line 138, in _respond
  311. self._poll_challenges(chall_update, best_effort)
  312. File "/usr/lib/python3.6/site-packages/certbot/auth_handler.py", line 202, in _poll_challenges
  313. raise errors.FailedChallenges(all_failed_achalls)
  314. certbot.errors.FailedChallenges: Failed authorization procedure. milosz.bestpony.ml (tls-sni-01): urn:acme:error:connection :: The server could not connect to the client to verify
  315. the domain :: Error getting validation data
Advertisement
RAW Paste Data Copied
Advertisement