search for: certon

...at/CentOS are not supporters of snap. > > TIA > > OS: CentOS 7 > Thanks to Leonardo and Michael, I have made some progress. The snaps application is not supported by RedHat/CentOS. The solution is simple,? just use: # yum install certbot The new error message is this: # certbot certonly --apache Saving debug log to /var/log/letsencrypt/letsencrypt.log Could not choose appropriate plugin: The requested apache plugin does not appear to be installed The requested apache plugin does not appear to be installed I am trying to find which is the "requested apache plugin". T...

...smtpd_tls_key_file = /etc/letsencrypt/live/mail.a.com/privkey.pem But I see that mail test tools are reporting that MX for b.com and c.com are misconfigured due to an SSL name mismatch. Indeed, this is true! So I believe I should generate a multi-site SSL cert. I try this: sudo certbot certonly --cert-name postfix --webroot \ --webroot-path /var/www/a-com -d www.a.com -d a.com -d mail.a.com \ --webroot-path /var/www/b-com -d www.b.com -d b.com \ --webroot-path /var/www/c-com -d www.c.com -d c.com And that fails with a bunch of errors like this: Domain: www.a.co...

...live/mail.a.com/privkey.pem > > But I see that mail test tools are reporting that MX for b.com and > c.com are misconfigured due to an SSL name mismatch. Indeed, this is > true! > > So I believe I should generate a multi-site SSL cert. I try this: > > sudo certbot certonly --cert-name postfix --webroot \ > --webroot-path /var/www/a-com -d www.a.com -d a.com -d mail.a.com \ > --webroot-path /var/www/b-com -d www.b.com -d b.com \ > --webroot-path /var/www/c-com -d www.c.com -d c.com > > And that fails with a bunch of errors like...

...can use certbot. It has a built in webserver. It allows you to > retrieve and renew the certificates automatically. I'm using it for > Dovecot and Postfix. > > See https://certbot.eff.org/ > > I'm doing everything with the following command: > > certbot/certbot-auto certonly --no-self-upgrade --standalone -n > --rsa-key-size 4096 -d domain1.example.com -d domain2.example.com > --pre-hook scripts/letsencrypt-pre-hook.sh --post-hook > scripts/letsencrypt-post-hook.sh > > With the pre-hook and post-hook scripts I make sure to open and close > the firew...

Install letsencrypt and request a certificate specifying the webroot of your Icecast server and the host.domain: certbot-auto certonly --webroot --webroot-path /usr/share/icecast2/web/ -d icecast.domain.name Now you should have a certificate for your server, it's only in the wrong format for Icecast, copy the key and the certificate to 1 file with the following cmd: cat /etc/letsencrypt/live/icecast.fomain.name/privkey.pem...

...be79b1db49481eb462ca4d0ce66e13 at nextdial.com.br> Content-Type: text/plain; charset="utf-8" Hello, At a test VPS running Ubuntu 16.04 LTS I did this: sudo apt-get update sudo add-apt-repository ppa:certbot/certbot sudo apt-get install certbot sudo apt-get install icecast2 sudo certbot certonly --standalone -d domain.com cat cert.pem privkey.pem | sudo tee /etc/icecast2/icecast.pem sudo vi /etc/icecast2/icecast.xml <listen-socket> <port>8443</port> <ssl>1</ssl> </listen-socket> <ssl-certificate>/etc/icecast2/icecast.pem</ssl-certificate> s...

Hello, I know some users here are using letsencrypt for their CA. If this is to off topic write me privately. I'm wanting letsencrypt to take over as my CA, replacing existing self signed certificates. I've got web working, a certificate for https sites and one for webmail as they have different names. What I'm now wanting to do is get letsencrypt going for my email setup, the smtp

Hello, I need to get some values passed in the querystring request in the log file. Something like that bellow: ie: "GET /radio?id=1 HTTP/1.1" instead of only "GET /radio HTTP/1.1" Do I need to change something in the source and compile? Or there is another way? Best, Thiago -------------- next part -------------- An HTML attachment was scrubbed...

...do this with > regards email? You can use certbot. It has a built in webserver. It allows you to retrieve and renew the certificates automatically. I'm using it for Dovecot and Postfix. See https://certbot.eff.org/ I'm doing everything with the following command: certbot/certbot-auto certonly --no-self-upgrade --standalone -n --rsa-key-size 4096 -d domain1.example.com -d domain2.example.com --pre-hook scripts/letsencrypt-pre-hook.sh --post-hook scripts/letsencrypt-post-hook.sh With the pre-hook and post-hook scripts I make sure to open and close the firewall on port 443, and to reloa...

...gt; cafile" to your issuers proper CA or just to your distro's CA bundle, > e.g /etc/pki/tls/certs/ca-bundle.crt. You're right, on Samba, it works that way # smb.conf extract tls cafile = /etc/ssl/certs/Comodo_AAA_Services_root.pem tls certfile = /etc/ssl/certs/ad-rep2.example.com-certonly+intermediate.pem tls keyfile = /etc/ssl/private/ad-rep2.example.com.key openssl s_client -showcerts -connect ad-rep2.example.com:636 .... SSL handshake has read 6020 bytes and written 428 bytes Verification: OK --- New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384 Server public key is 2048 bit Se...

Hello, At a test VPS running Ubuntu 16.04 LTS I did this: sudo apt-get update sudo add-apt-repository ppa:certbot/certbot sudo apt-get install certbot sudo apt-get install icecast2 sudo certbot certonly --standalone -d domain.com cat cert.pem privkey.pem | sudo tee /etc/icecast2/icecast.pem sudo vi /etc/icecast2/icecast.xml <listen-socket> <port>8443</port> <ssl>1</ssl> </listen-socket> <ssl-certificate>/etc/icecast2/icecast.pem</ssl-...

...>> server string = Samba Server Version %v >> template homedir = /home/%ACCOUNTNAME% >> template shell = /bin/bash >> tls cafile = tls/ad-rep2.example.com-2020-intermediate.pem >> tls certfile = tls/ad-rep2.example.com-2020-certonly.pem >> tls keyfile = tls/ad-rep2.example.com-2020.key >> tls verify peer = ca_and_name >> workgroup = EXAMPLE >> winbindd:use external pipes = true >> smbd:backgroundqueue = no >> rpc_daemon:spoolssd = embed...

...server role = active directory domain controller server string = Samba Server Version %v template homedir = /home/%ACCOUNTNAME% template shell = /bin/bash tls cafile = tls/ad-rep2.example.com-2020-intermediate.pem tls certfile = tls/ad-rep2.example.com-2020-certonly.pem tls keyfile = tls/ad-rep2.example.com-2020.key tls verify peer = ca_and_name workgroup = EXAMPLE winbindd:use external pipes = true smbd:backgroundqueue = no rpc_daemon:spoolssd = embedded rpc_server:tcpip = no rpc_server:spoolss...

...est VPS running Ubuntu 16.04 LTS I did this: > > 1. sudo apt-get update > 2. sudo add-apt-repository ppa:certbot/certbot > 3. sudo apt-get install certbot > You'll need an additional step at this point, see below. > 1. sudo apt-get install icecast2 > 2. sudo certbot certonly --standalone -d domain.com > 3. cat cert.pem privkey.pem | sudo tee /etc/icecast2/icecast.pem > 4. sudo vi /etc/icecast2/icecast.xml > 5. <listen-socket> >     <port>8443</port> >     <ssl>1</ssl> > </listen-socket> > &lt...

Hi All - I am running CentOS 7.5 and trying to use certbot. I am getting an error 403 forbidden on the /.well-known/acme-challenge/-CG_gSckofY5ln7TdMvoanDI1_FBRh8otQkyB0hxmoo Some searching indicated permission problems... I also noticed that the /var/www/html directory does not even have the .well-known directory in it. The /var/www/html directory was root:root I changed it to root:apache

That’s what I have been looking for, thanks ! From: Icecast [mailto:icecast-bounces at xiph.org] On Behalf Of Tycho Eggen Sent: donderdag 6 september 2018 22:21 To: Icecast streaming server user discussions Subject: Re: [Icecast] icecast ssl and letsencrypt renewal You can add a posthook to your certbot cronjob: certbot renew —post-hook “/etc/init.d/icecast restart” Or however you restart

I am getting myself confused, and need someone who fully understands this process to help me out a bot. I would like to obtain an ssl certificate, so I can run my own imap server on a machine in my office. My domain is hosted by networksolutions, but I don't run my imap server there. I am assuming I'll need to pay a CA to generate what I need, but I'm confused about what I

...rectory domain controller > server string = Samba Server Version %v > template homedir = /home/%ACCOUNTNAME% > template shell = /bin/bash > tls cafile = tls/ad-rep2.example.com-2020-intermediate.pem > tls certfile = tls/ad-rep2.example.com-2020-certonly.pem > tls keyfile = tls/ad-rep2.example.com-2020.key > tls verify peer = ca_and_name > workgroup = EXAMPLE > winbindd:use external pipes = true > smbd:backgroundqueue = no > rpc_daemon:spoolssd = embedded > rpc_server:tc...

Yes, the web players I've tested have a hard time parsing meta properly using only one instance with separate streams. Tested at least 6 of them looking for reliable meta and cross browser/OS compatibility. On May 29, 2017, at 10:23 AM, Marvin Scholz <epirat07 at gmail.com<mailto:epirat07 at gmail.com>> wrote: Any specific reason to run 4 Icecasts? On 29 May 2017, at 16:21,