• Re: Letsyncrypt help

    From Rampage@1:103/705 to Altere on Thu Dec 19 06:55:36 2019
    Re: Re: Letsyncrypt help
    By: Altere to Rampage on Wed Dec 18 2019 10:30:29


    Host = acme-v02.api.letsencrypt.org
    Directory = /directory
    TOSAgreed = true

    get rid of that Directory line in the global section... it isn't pointing
    to anywhere valid anyway...

    I believe that's for the letsencrypt.org side.

    it doesn't exist at all in my letyncrypt.ini file at all... in fact, the only thing i started with was TOSAgreed=true on the first line... i have only one domain at this time...


    )\/(ark

    ---
    Synchronet The SouthEast Star Mail HUB - SESTAR
    * Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)
  • From Digital Man@1:103/705 to Rampage on Thu Dec 19 10:00:29 2019
    Re: Re: Letsyncrypt help
    By: Rampage to Altere on Thu Dec 19 2019 06:55 am

    Re: Re: Letsyncrypt help
    By: Altere to Rampage on Wed Dec 18 2019 10:30:29


    Host = acme-v02.api.letsencrypt.org
    Directory = /directory
    TOSAgreed = true

    get rid of that Directory line in the global section... it isn't pointing to anywhere valid anyway...

    I believe that's for the letsencrypt.org side.

    it doesn't exist at all in my letyncrypt.ini file at all... in fact, the only thing i started with was TOSAgreed=true on the first line... i have only one domain at this time...

    "/directory" is the default value of the letsyncrypt.ini Directory key. So having it present and set to "/directory" is the same as not having it. It's required for the ACMEv2 protocol exchange and does not refer to a directory on the BBS's local file system.

    digital man

    This Is Spinal Tap quote #23:
    David St. Hubbins: I envy us.
    Norco, CA WX: 58.8F, 31.0% humidity, 4 mph WSW wind, 0.00 inches rain/24hrs --- SBBSecho 3.10-Linux
    * Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)
  • From Altere@1:103/705 to Rampage on Thu Dec 19 11:07:15 2019
    Re: Re: Letsyncrypt help
    By: Rampage to Altere on Thu Dec 19 2019 06:55 am

    Host = acme-v02.api.letsencrypt.org
    Directory = /directory
    TOSAgreed = true

    get rid of that Directory line in the global section... it isn't pointing to anywhere valid anyway...

    I believe that's for the letsencrypt.org side.

    it doesn't exist at all in my letyncrypt.ini file at all... in fact, the only thing i started with was TOSAgreed=true on the first line... i have only one domain at this time...

    Well perhaps it's not required, but I saw it as part of letsencrypt.org/directory or something like that when I ran jexec manually. Not
    sure why you don't have it in yours, it's there in the cvs version.

    -altere

    ---
    Synchronet Athelstan BBS athelstan.org telnet:23 | ssh:2222
    * Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)
  • From Altere@1:103/705 to HusTler on Thu Dec 19 11:24:22 2019
    Re: Re: Letsyncrypt help
    By: HusTler to Altere on Wed Dec 18 2019 04:14 pm

    Host = acme-v02.api.letsencrypt.org
    Directory = /directory
    TOSAgreed = true

    get rid of that Directory line in the global section... it isn't pointing to anywhere valid anyway...

    I believe that's for the letsencrypt.org side.


    This certificate shit has to be the most stupid thing I've ever had to deal with as a BBS Sysop.

    <shrug> No one else has had this much of a problem getting it going. Have you tried removing the files that were created and letting the timed even re-create
    them? It's been recommended twice but I haven't seen any confirmation that you've done that. At this point I'd probably obtain a fresh copy of letsyncrypt.ini from cvs as well and follow the wiki to the T aside from having
    both your hosts.domains under [Domains].

    Sometimes you just have to start over until you get it right and figure out where you went wrong. In this case, there's letsyncrypt.ini, letsyncrypt.key, and ssl.cert involved, remove them and get a fresh copy of the .ini, and follow
    the wiki.

    -altere

    ---
    Synchronet Athelstan BBS athelstan.org telnet:23 | ssh:2222
    * Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)
  • From HusTler@1:103/705 to Altere on Fri Dec 20 14:48:06 2019
    Re: Re: Letsyncrypt help
    By: Altere to HusTler on Thu Dec 19 2019 11:24 am

    This certificate shit has to be the most stupid thing I've ever had to
    deal with as a BBS Sysop.

    <shrug> No one else has had this much of a problem getting it going. Have
    you tried removing the files that were
    created and letting the timed even re-create them? It's been recommended
    twice but I haven't seen any confirmation
    that you've done that. At this point I'd probably obtain a fresh copy of
    letsyncrypt.ini from cvs as well and follow
    the wiki to the T aside from having both your hosts.domains under [Domains].

    No one else runs their BBS on a synchronetbbs.org server. I tried all the things you mentioned 5 times. I don't know how the DNS works with synchronetbbs.org or how https works with havens.synchronetbbs.org. When I run jsexec letsyncrypt.js it compiles and then locks up. I can't report anything cause the scrypt never finishes. It does create all the files after I reboot eg. letsyncrypt.key, ssl.cert and cryplib.key but the cert for https is not valid. Anyway thanks for your help. I've had enough and I'm going to abandon ship on this https thing.
    H A V E N S B B S havens.synchro.net:23

    ---
    Synchronet Havens BBS havens.synchro.net
    * Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)
  • From mark lewis@1:3634/12.73 to Digital Man on Mon Dec 23 13:54:54 2019

    On 2019 Dec 19 10:00:28, you wrote to Rampage:

    "/directory" is the default value of the letsyncrypt.ini Directory
    key. So having it present and set to "/directory" is the same as not having it. It's required for the ACMEv2 protocol exchange and does not refer to a directory on the BBS's local file system.

    ahh, ok... i didn't have it at all when i set mine up... i had to create my letsyncrypt.ini myself since i'm running close to the bleeding edge of the code
    base...

    echo TOSAgreed=true > /sbbs/ctrl/letsyncrypt.ini
    touch /sbbs/data/syncrypt.now

    i think i tried copying some stuff from the wiki page but didn't understand it and how to do multiple domains with it at that time so i punted to only one domain, ran the above, everything worked, and i haven't looked back so far... my letsyncrypt.ini has only 6 lines in it, FWTW...

    )\/(ark

    Once men turned their thinking over to machines in the hope that this would set
    them free. But that only permitted other men with machines to enslave them.
    ... Half the people you know are below average.
    ---
    * Origin: (1:3634/12.73)