So, I was trying to create a SSL certificate with certbot…..
[email protected]:~# certbot --apache -d blog.domain.com
This was how I’v done to properly create it.
certbot --authenticator standalone --installer apache -d blog.domain.com --pre-hook "systemctl stop apache2" --post-hook "systemctl start apache2"
I was having some HTTP issues here on this blog…
Mixed Content: The page at ‘https://www.digitalwhores.net/*******’. This request has been blocked; the content must be served over HTTPS.
I’v installed SSL Insecure Content Fixer.
Make sure you select !!
HTTP_CF_VISITOR (Cloudflare Flexible SSL); deprecated, since Cloudflare sends HTTP_X_FORWARDED_PROTO now
letsencrypt renew output
Detail: Invalid response from
nginx error log
66.133.XXX.XXX - - [11/Feb/2017:09:33:20 +0100] "GET /.well-known/acme-challenge/WLpdvugG3YzC53RTrZMJcYWsRqcj64vWLw43HNBkMN6 HTTP/1.1" 404 247 "http://www.domain.com/.well-known/acme-challenge/WLpdvugG3YzC53RTrZMJcYWsRqcj64vWLw43HNBkMN6" "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)"
“Somehow” my domain root has changed.
I had to take a look at /etc/letsencrypt/renewal/domain.com.conf and fix some paths… 🙂
“This certificate was signed by an untrusted issuer” problem after updating to Mac OS.
Your computer has expired certificates.
To solve this make the following actions:
- Applications > Utilities > Keychain Access.
a) Keychain: Login and
b) Category: Certificates
- Scroll each certificate and if it has expired delete it.