• letsyncrypt issue

    From Dumas Walker@VERT/CAPCITY2 to digital man on Thursday, December 31, 2020 16:46:05
    12/31 16:33:34 evnt DAILY Semaphore signaled for Timed Event: SYNCRYPT
    12/31 16:33:34 evnt SYNCRYPT Running timed event: SYNCRYPT
    12/31 16:33:37 evnt SYNCRYPT Token not found: /sbbs/webv4/root/.well-known/acme -challenge/cr57TBoH_WLgVhK9H05AulsaaESH9YgrUNAmrq2XsKM
    12/31 16:33:37 evnt SYNCRYPT Token not found: /sbbs/webv4/root/.well-known/acme -challenge/cr57TBoH_WLgVhK9H05AulsaaESH9YgrUNAmrq2XsKM
    12/31 16:33:37 evnt SYNCRYPT Token not found: /sbbs/webv4/root/.well-known/acme -challenge/cr57TBoH_WLgVhK9H05AulsaaESH9YgrUNAmrq2XsKM
    12/31 16:33:40 evnt SYNCRYPT !JavaScript : uncaught exception: Authorization failed... https://acme-v02.api.letsencrypt.org/acme/authz-v3/9724016742
    12/31 16:33:40 evnt SYNCRYPT Timed event: SYNCRYPT returned 0

    ; $Id: letsyncrypt.ini,v 1.1 2019/07/24 22:32:54 rswindell Exp $
    ; For use with exec/letsyncrypt.js
    ; See http://wiki.synchro.net/module:letsyncrypt for details

    Host = acme-v02.api.letsencrypt.org
    Directory = /directory
    TOSAgreed = true
    GroupReadableKeyFile = false

    [Domains]
    capitolcityonline.net = /sbbs/webv4/root
    capcity2.synchro.net = /sbbs/webv4/root
    moetiki.ddns.net = /sbbs/webv4/root
    possomso.fsxnet.nz = /sbbs/webv4/root

    [key_id]

    [State]

    Those are the errors when the event runs and the contents of my ini file.

    As a result, I keep getting this error whenever an incoming SMTP event comes in:

    "!ERROR 'Couldn't import the session key used to protect the private key' (-22) getting private key"

    But the mail still comes in.

    I also cannot connect via https. Port 443 is open, is pointed to the correct local ipa. sbbs shows no error message when traffic comes in on that port (or when I try it via https://localhost).

    The only thing in the /sbbs/webv4/root/.well-known/acme-challenge directory is a file called webctrl.ini that contains:

    AccessRequirements=

    Thanks!
    #

    ---
    ­ Synchronet ­ CAPCITY2 * capcity2.synchro.net * Telnet/SSH:2022/Rlogin/HTTP
  • From Digital Man@VERT to Dumas Walker on Thursday, December 31, 2020 18:54:49
    Re: letsyncrypt issue
    By: Dumas Walker to digital man on Thu Dec 31 2020 04:46 pm

    12/31 16:33:34 evnt DAILY Semaphore signaled for Timed Event: SYNCRYPT
    12/31 16:33:34 evnt SYNCRYPT Running timed event: SYNCRYPT
    12/31 16:33:37 evnt SYNCRYPT Token not found: /sbbs/webv4/root/.well-known/acme -challenge/cr57TBoH_WLgVhK9H05AulsaaESH9YgrUNAmrq2XsKM
    12/31 16:33:37 evnt SYNCRYPT Token not found: /sbbs/webv4/root/.well-known/acme -challenge/cr57TBoH_WLgVhK9H05AulsaaESH9YgrUNAmrq2XsKM
    12/31 16:33:37 evnt SYNCRYPT Token not found: /sbbs/webv4/root/.well-known/acme -challenge/cr57TBoH_WLgVhK9H05AulsaaESH9YgrUNAmrq2XsKM
    12/31 16:33:40 evnt SYNCRYPT !JavaScript : uncaught exception: Authorization failed... https://acme-v02.api.letsencrypt.org/acme/authz-v3/9724016742 12/31 16:33:40 evnt SYNCRYPT Timed event: SYNCRYPT returned 0

    I think that usually means you previously had LetsEncrypt setup with a different web server and didn't invalidate the old credentials. Best to check with Deuce on irc.synchro.net however if you remain stuck.
    --
    digital man

    This Is Spinal Tap quote #35:
    Jeanine Pettibone: You don't do heavy metal in Dubly, you know.
    Norco, CA WX: 59.9°F, 32.0% humidity, 4 mph SSE wind, 0.00 inches rain/24hrs

    ---
    ■ Synchronet ■ Vertrauen ■ Home of Synchronet ■ [vert/cvs/bbs].synchro.net
  • From Bob Roberts@VERT/HOVAL to Dumas Walker on Friday, January 01, 2021 15:48:35
    Re: letsyncrypt issue
    By: Dumas Walker to digital man on Thu Dec 31 2020 04:46 pm

    12/31 16:33:37 evnt SYNCRYPT Token not found: /sbbs/webv4/root/.well-known/acme
    SYNCRYPT !JavaScript : uncaught exception: Authorization failed...

    I have the same problem with letsencrypt. I've never gotten it work.... if you find the solution please share!

    Bob Roberts

    ---
    ■ Synchronet ■ Halls of Valhalla =San=Francisco= Happy New Year!
  • From Nelgin@VERT/EOTLBBS to Dumas Walker on Saturday, January 02, 2021 01:57:02
    Dumas wrote:
    failed... https://acme-v02.api.letsencrypt.org/acme/authz-v3/9724016742

    Did you actually try to go to this url to see what it would return?

    "detail": "DNS problem: NXDOMAIN looking up A for possomso.fsxnet.nz - check that a DNS record exists for this domain",


    oops, no A recorcd.

    Fix your DNS and try again.

    ---
    ■ Synchronet ■ End Of The Line BBS - endofthelinebbs.com
  • From Dumas Walker@VERT/CAPCITY2 to BOB ROBERTS on Saturday, January 02, 2021 12:51:00
    12/31 16:33:37 evnt SYNCRYPT Token not found: /sbbs/webv4/root/.well-known/acme
    SYNCRYPT !JavaScript : uncaught exception: Authorization failed...

    I have the same problem with letsencrypt. I've never gotten it work.... if yo
    find the solution please share!

    I spoke with deuce on irc. He said that it was likely a sign that I had a domain listed that might not be up to date. I had listed all four of the domains that point to my system, including two that are not used by
    synchronet. Once I commented those two out, it worked like a champ.


    * SLMR 2.1a * In plumbing, a straight flush is better than a full house

    ---
    ■ Synchronet ■ CAPCITY2 * capcity2.synchro.net * Telnet/SSH:2022/Rlogin/HTTP
  • From Dumas Walker@VERT/CAPCITY2 to NELGIN on Saturday, January 02, 2021 12:52:00
    Did you actually try to go to this url to see what it would return?

    lol I spelled it wrong. :)


    * SLMR 2.1a * What's a 6.9? 69 interrupted by a period.

    ---
    ■ Synchronet ■ CAPCITY2 * capcity2.synchro.net * Telnet/SSH:2022/Rlogin/HTTP
  • From Bob Roberts@VERT/HOVAL to Dumas Walker on Sunday, January 03, 2021 11:16:45
    Re: letsyncrypt issue
    By: Dumas Walker to BOB ROBERTS on Sat Jan 02 2021 12:51 pm

    I have the same problem with letsencrypt. I've never gotten it
    work.... if yo find the solution please share!

    I spoke with deuce on irc. He said that it was likely a sign that I had a domain listed that might not be up to date. I had listed all four of the domains that point to my system, including two that are not used by synchronet. Once I commented those two out, it worked like a champ.

    Okay. I've made some progress. But now I'm getting:

    !JavaScript : uncaught exception: Authorization failed... https://acme-v02.api.letsencrypt.org/acme/authz-v3/9794422225

    When I run
    /sbbs/exec/jsexec letsyncrypt.js --new-key

    I get
    !JavaScript /home/sbbs/sbbs/exec/load/acmev2.js line 307: Error: keyChange did not return 200

    Bob Roberts

    ---
    ■ Synchronet ■ Halls of Valhalla =San=Francisco=
  • From deon@VERT/ALTERANT to Bob Roberts on Monday, January 04, 2021 10:23:52
    Re: letsyncrypt issue
    By: Bob Roberts to Dumas Walker on Sun Jan 03 2021 11:16 am

    Howdy,

    !JavaScript : uncaught exception: Authorization failed... https://acme-v02.api.letsencrypt.org/acme/authz-v3/9794422225

    If you visit this URL you'll get a hint of what acme is doing and where it failed.

    In this case, it was attempting to get the code it supplied, but instead got a 400.

    You might like to double check the URL it used is correct (spelling), the IP address it resolved to is correct (DNS) and then the fact the web server is listening and running on port 80.

    ...δεσ∩

    ... Do what you will with this tagline, just don't bother me about it!

    ---
    ■ Synchronet ■ Alterant | an SBBS in Docker on Pi!
  • From Dumas Walker@VERT/CAPCITY2 to BOB ROBERTS on Sunday, January 03, 2021 18:20:00
    Okay. I've made some progress. But now I'm getting:

    !JavaScript : uncaught exception: Authorization failed... https://acme-v02.api.
    etsencrypt.org/acme/authz-v3/9794422225

    Someone pointed out to me that you can go to that https link and find out
    more about what caused the error.

    When I run
    /sbbs/exec/jsexec letsyncrypt.js --new-key

    I get
    !JavaScript /home/sbbs/sbbs/exec/load/acmev2.js line 307: Error: keyChange did
    not return 200

    You might try asking deuce in the synchronet irc. Once I did it all got
    fixed right up.


    * SLMR 2.1a * It ain't over, but the fat lady is clearing her throat.

    ---
    ■ Synchronet ■ CAPCITY2 * capcity2.synchro.net * Telnet/SSH:2022/Rlogin/HTTP