From owner-freebsd-questions@freebsd.org  Tue May 23 12:23:26 2017
Return-Path: <owner-freebsd-questions@freebsd.org>
Delivered-To: freebsd-questions@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 77445D7903B
 for <freebsd-questions@mailman.ysv.freebsd.org>;
 Tue, 23 May 2017 12:23:26 +0000 (UTC)
 (envelope-from dave.mehler@gmail.com)
Received: from mail-wm0-x234.google.com (mail-wm0-x234.google.com
 [IPv6:2a00:1450:400c:c09::234])
 (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
 (Client CN "smtp.gmail.com",
 Issuer "Google Internet Authority G2" (verified OK))
 by mx1.freebsd.org (Postfix) with ESMTPS id 1481B1EBF
 for <freebsd-questions@freebsd.org>; Tue, 23 May 2017 12:23:26 +0000 (UTC)
 (envelope-from dave.mehler@gmail.com)
Received: by mail-wm0-x234.google.com with SMTP id b84so22416916wmh.0
 for <freebsd-questions@freebsd.org>; Tue, 23 May 2017 05:23:25 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025;
 h=mime-version:from:date:message-id:subject:to;
 bh=0n9X+RtCjhqnQxwMWv5Mu/3xo2N1vhGs1q9jK/5v0hs=;
 b=k10Lode4rOqusiMfzKsd4MW1qlPhuNkCgOfT4eX8uU6CcJ6crdwl6V2m3FiolWWDec
 0TMeL9lPxfefOkQ6CBgY8Un6Ly7tOlNs/kiqIdCkF0CZ90/YZgHoWr4774sd5o9dCM/N
 XsNGN+YnCWa9zuBE1GfdkiYBkYjdUFWojvfqKOB/2CJq6Jq8frLt973HE16gUhF9zemx
 uv/qC6N+vm/zKa/JTi5CoFf1j20oh+fN16SGp98qC67r9mPMxmsZdzZ4l1ipAcDPR0W5
 luLSPN5alSq41mzKCDyhIhnsKiMhJAzOee+mzOXXL8hx7emjZaCycMHff/u5EMWYqT/8
 4vUQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20161025;
 h=x-gm-message-state:mime-version:from:date:message-id:subject:to;
 bh=0n9X+RtCjhqnQxwMWv5Mu/3xo2N1vhGs1q9jK/5v0hs=;
 b=eI5i5p+Oek653LzJPsta8WJqPVeISDotXldUmjaFL0bcva6TRQIWZIhmXS410AVjOx
 AugoUZ7hj9NTQzLnTNF72yPje3+1RSMFqDBELS0iA9BVDherWLUrJgvZRDAM/t5soTRT
 o6Ol3XU2VBJW2u4Ywjd5JgnakD3MoOd9Sf/8lyCzFLWEEc8waq5vFHYdRpkcD6VDp2ik
 kQ+BXhXG9sAgipLsazRZmLDZsF/i4NLXoxzZjvvbA8nn4MQLbm9yKEQLYcO1pU8f+c+u
 yEXxvzJN8Gv1h+bMNWxoHt7rHERuV7P+XXhuuqRdRmfe4mAv2PeDVmdOvoHQb876ItiS
 lSlQ==
X-Gm-Message-State: AODbwcAIEqK44H8N7nWdZSnccXiB0F1x8jUBQunZRfaLNUQ5FCNny+3a
 gY/2SFQbNFBaLvVmipkq2EOHmj6y7w==
X-Received: by 10.223.134.46 with SMTP id 43mr17881349wrv.123.1495542204237;
 Tue, 23 May 2017 05:23:24 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.223.136.51 with HTTP; Tue, 23 May 2017 05:23:24 -0700 (PDT)
From: David Mehler <dave.mehler@gmail.com>
Date: Tue, 23 May 2017 08:23:24 -0400
Message-ID: <CAPORhP4bS3HkE7q9vPriSusZvxC5YFAd5U8jEyA0x6cA1qucZQ@mail.gmail.com>
Subject: Acme client not updating keys automatically
To: freebsd-questions <freebsd-questions@freebsd.org>
Content-Type: text/plain; charset="UTF-8"
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.23
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions/>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 23 May 2017 12:23:26 -0000

Hello,

I've got a Freebsd 10.3 system running several ssl-enabled web
servers. I've got letsencrypt keys for all of them. I'm using
py27-certbot (am not stuck on it so if there's an alternative), and
have a cron job set to check keys and update them by doing a certbot
renew.

I thought something was wrong when I kept getting key expirey notices
from letsencrypt, then I checked a site and got a key has expired
message.

Suggestions welcome.

Thanks.
Dave.