Date: Wed, 19 Apr 2017 16:05:25 +0000 From: bugzilla-noreply@freebsd.org To: freebsd-ports-bugs@FreeBSD.org Subject: [Bug 218758] security/py-certbot: incorrect (non-working) instructions in pkg-message Message-ID: <bug-218758-13@https.bugs.freebsd.org/bugzilla/>
next in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D218758 Bug ID: 218758 Summary: security/py-certbot: incorrect (non-working) instructions in pkg-message Product: Ports & Packages Version: Latest Hardware: Any OS: Any Status: New Severity: Affects Some People Priority: --- Component: Individual Port(s) Assignee: koobs@FreeBSD.org Reporter: justin@postgresql.org Flags: maintainer-feedback?(koobs@FreeBSD.org) Assignee: koobs@FreeBSD.org After installing py-certbot, the following pkg-message is displayed: =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D The Let's Encrypt Client is BETA SOFTWARE. It contains plenty of bugs and rough edges, and should be tested thoroughly in staging environments before use on production systems. This port installs the "standalone" Python client only, which does not use = and is not the letsencrypt-auto bootstrap/wrapper script. To obtain certificates, use the 'certonly' command as follows: # sudo certbot --server <server-URL> certonly Note: The client currently requires the ability to bind on TCP port 80. If you have a server running on this port, it will need to be temporarily stop= ped so that the standalone server can listen on that port to complete authentication. The letsencrypt plugins to support apache and nginx certificate installation will be made available soon in the following ports: * Apache plugin: security/py-letsencrypt-apache * Nginx plugin: security/py-letsencrypt-nginx =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D The "# sudo certbot --server <server-URL> certonly" line there is incorrect, and generates a misleading error message. eg the line "seems like" the rig= ht kind of thing, but doesn't actually work + barfs with a misleading error message. :( The associated log files talk about "Connection refused", which is weird as= I'd specified to spin up a standalone web server each time. It turns out the solution is to use a slightly different command line: # certbot certonly --standalone -d [server FQDN] eg: # certbot certonly --standalone -d lists.sqlitebrowser.org This works as expected, generating certs etc. So, the pkg-message should probably be updated to reflect that. :) --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-218758-13>