The server certificate for lists.ntpsec.org has expired again.
Gary E. Miller
gem at rellim.com
Fri Jan 3 04:24:10 UTC 2025
Yo Hal!
On Thu, 02 Jan 2025 19:36:52 -0800
Hal Murray <halmurray at sonic.net> wrote:
> Gary said:
> > Obvisouly something broken somewhere, but I fail to locate the
> > issue. Let's Encrypt allerts me on other certs, and the security@
> > email works for other people.
>
> Try
> certbot show_account
# certbot show_account
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Account details for server https://acme-v02.api.letsencrypt.org/directory:
Account URL: https://acme-v02.api.letsencrypt.org/acme/acct/6230235
Account Thumbprint: YRE6lhm3S2VDkgCox2Rb7k7RX23YjUDhCBJWL0_0yLQ
Email contact: security at ntpsec.org
I tried to add my email too, but it got ignored.
> > The email is update on every renew. The relevant renewal script
> > looks right to me.
>
> I don't know that that means. I use raw certbot by hand. No script.
The script:
# cat Do-certbot
#!/bin/sh
# /usr/local/etc/rc.d/apache24 stop
# /usr/local/etc/rc.d/apache24 start
# --webroot
# -w /usr/local/www/apache24/data
apachectl stop
certbot certonly --agree-tos \
--standalone \
-m security at ntpsec.org \
-m gem at rellim.com \
-d lists.ntpsec.org
apachectl start
exit 0
> We can setup a script for a cron job that will figure out how much
> time left and send email.
"We" could. :-) But it would quikcly get out of sync.
RGDS
GARY
---------------------------------------------------------------------------
Gary E. Miller Rellim 109 NW Wilmington Ave., Suite E, Bend, OR 97703
gem at rellim.com Tel:+1 541 382 8588
Veritas liberabit vos. -- Quid est veritas?
"If you can't measure it, you can't improve it." - Lord Kelvin
More information about the devel
mailing list