VPS侦探论坛 › LNMP一键安装包 › LNMP1.4 SSL装不上，请问怎么操作？

charwavid 发表于 2018-1-4 15:35:20

LNMP1.4 SSL装不上，请问怎么操作？

2: Use Let's Encrypt to create SSL Certificate and Key
Enter 1 or 2: 2
Please enter your email address:
It will be processed automatically.
/bin/certbot
index-url = https://mirrors.aliyun.com/pypi/simple/
pip.conf exist.
Starting create SSL Certificate use Let's Encrypt...
/opt/eff.org/certbot/venv/lib/python2.6/site-packages/cryptography/__init__.py:26: DeprecationWarning: Python 2.6 is no longer supported by the Python core team, please upgrade your Python. A future version of cryptography will drop support for Python 2.6
DeprecationWarning
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator webroot, Installer None
Obtaining a new certificate
/opt/eff.org/certbot/venv/lib/python2.6/site-packages/acme/jose/jwa.py:110: DeprecationWarning: signer and verifier have been deprecated. Please use sign and verify instead.
signer = key.signer(self.padding, self.hash)
An unexpected error occurred:
The request message was malformed :: Error creating new authz :: DNS name does not have enough labels
Please see the logfiles in /var/log/letsencrypt for more details.
Let's Encrypt SSL Certificate create failed!

licess 发表于 2018-1-4 18:09:19

估计可能是填写的域名有问题，是非域名。建议发 /var/log/letsencrypt/letsencrypt.log 完整日志看一下

charwavid 发表于 2018-1-14 09:22:40

管理员，你好。这个问题已经知道是什么情况引起来的。在lnmp vhost add 的时候，为了建立/home/wwwroot/baidu的文件目录，站点域名设置成baidu这种不带后缀的；lnmp vhost add 命令同时开启ssl时，ssl是不认baidu这样的没解析域名，所以才不能成功创建证书。建议：在lnmp vhost add 命令同时开启ssl时，过滤掉baidu这种不带后缀的域名。
希望你们的LNMP越来越好用，谢谢。

licess 发表于 2018-1-14 14:47:43

回复 3# 的帖子

不是正常的域名就没法生成ssl，你先lnmp vhost add 添加非正常域名后再单独 lnmp ssl add 为正常的域名添加ssl开启https就行了

charwavid 发表于 2018-1-19 10:26:47

Certbot has problem setting up the virtual environment.

We were not be able to guess the right solution from your pip
output.

Consult https://certbot.eff.org/docs/install.html#problems-with-python-virtual-environment
for possible solutions.
You may also find some support resources at https://certbot.eff.org/support/ .
Let's Encrypt SSL Certificate create failed!

这是按你说的的那个步骤操作的，建站点时也没有用不带后缀的域名。看了一下var/log/下没有所说的letsencrypt目录。

系统为centos 6.5 阿里云   服务器初始化安装
一次一步到位的安装都没有。郁闷。
再次初始化，wget不到lnmp1.4.tar.gz，但在本地可以下载到。

[ 本帖最后由 charwavid 于 2018-1-19 11:05 编辑 ]

licess 发表于 2018-1-19 16:15:31

回复 5# 的帖子

没有lesencrypt的目录说明没安装成功

可以尝试升级到1.5 https://lnmp.org/notice/lnmp-v1-5-beta.html

wget不到没错误信息没法说

查看完整版本: LNMP1.4 SSL装不上，请问怎么操作？