设为首页收藏本站
切换到窄版

VPS侦探论坛

 找回密码
 注册
VPS侦探论坛»VPS侦探论坛 技术交流区 LNMP一键安装包 请教军哥,创建SSL失败
返回列表 发新帖
查看: 4343|回复: 7

请教军哥,创建SSL失败

[复制链接]
sky
发表于 2019-8-27 11:32:56 | 显示全部楼层 |阅读模式

It will be processed automatically.
/bin/certbot [found]
Starting create SSL Certificate use Let's Encrypt...
Bootstrapping dependencies for RedHat-based OSes that will use Python3... (you can skip this with --

no-bootstrap)
yum is /usr/bin/yum
To use Certbot, packages from the EPEL repository need to be installed.
Enable the EPEL repository and try running Certbot again.
Let's Encrypt SSL Certificate create failed!

请教下如何解决呢?谢谢。

美国VPS推荐: 遨游主机LinodeLOCVPS主机云搬瓦工80VPSVultr美国VPS主机中国VPS推荐: 阿里云腾讯云。LNMP付费服务(代装/问题排查)QQ 503228080
回复

举报

licess
发表于 2019-8-27 14:27:45 | 显示全部楼层


certbot的我们已经停止更新,建议升级到acme.sh的,https://lnmp.org/notice/lnmp-v1-6.html 升一下管理脚步即可
Linux下Nginx+MySQL+PHP自动安装工具:https://lnmp.org
回复 支持 反对

举报

sky
 楼主| 发表于 2019-8-27 21:18:58 | 显示全部楼层

# wget http://soft.vpser.net/lnmp/lnmp1.6.tar.gz -cO lnmp1.6.tar.gz && tar zxf lnmp1.6.tar.gz && cd lnmp1.6 && ./install.sh lnmp
--2019-08-27 21:17:31--  http://soft.vpser.net/lnmp/lnmp1.6.tar.gz
Resolving soft.vpser.net... 2600:3c01::f03c:91ff:fe92:1a06, 104.238.161.196
Connecting to soft.vpser.net|2600:3c01::f03c:91ff:fe92:1a06|:80... connected.
HTTP request sent, awaiting response... 416 Requested Range Not Satisfiable

    The file is already fully retrieved; nothing to do.

You have installed LNMP!
If you want to reinstall LNMP, please BACKUP your data.
and run uninstall script: ./uninstall.sh before you install.
[root@mysiter lnmp1.6]# upgrade1.x-1.6.sh
bash: upgrade1.x-1.6.sh: command not found

不好意思,实在不懂。请问下要怎么操作呢?谢谢了
美国VPS推荐: 遨游主机LinodeLOCVPS主机云搬瓦工80VPSVultr美国VPS主机中国VPS推荐: 阿里云腾讯云。LNMP付费服务(代装/问题排查)QQ 503228080
回复 支持 反对

举报

licess
发表于 2019-8-28 08:55:45 | 显示全部楼层



sky 发表于 2019-8-27 21:18
# wget http://soft.vpser.net/lnmp/lnmp1.6.tar.gz -cO lnmp1.6.tar.gz && tar zxf lnmp1.6.tar.gz && cd  ...

脚本的运行肯定是 ./upgrade1.x-1.6.sh 的,只有系统环境变量目录下的可执行命令才直接输入文件名执行
Linux下Nginx+MySQL+PHP自动安装工具:https://lnmp.org
回复 支持 反对

举报

sky
 楼主| 发表于 2019-8-28 09:31:23 | 显示全部楼层



100%[==============================================>] 139,601     --.-K/s   in 0.06s   

2019-08-28 09:20:17 (2.08 MB/s) - `latest.tar.gz' saved [139601/139601]

[Wed Aug 28 09:20:17 CST 2019] It is recommended to install socat first.
[Wed Aug 28 09:20:17 CST 2019] We use socat for standalone server if you use standalone mode.
[Wed Aug 28 09:20:17 CST 2019] If you don't use standalone mode, just ignore this warning.
[Wed Aug 28 09:20:17 CST 2019] Installing to /usr/local/acme.sh
[Wed Aug 28 09:20:17 CST 2019] Installed to /usr/local/acme.sh/acme.sh
[Wed Aug 28 09:20:17 CST 2019] Installing alias to '/root/.bashrc'
[Wed Aug 28 09:20:17 CST 2019] OK, Close and reopen your terminal to start using acme.sh
[Wed Aug 28 09:20:17 CST 2019] Installing alias to '/root/.cshrc'
[Wed Aug 28 09:20:17 CST 2019] Installing alias to '/root/.tcshrc'
[Wed Aug 28 09:20:17 CST 2019] Installing cron job
no crontab for root
no crontab for root
[Wed Aug 28 09:20:17 CST 2019] Good, bash is found, so change the shebang to use bash as preferred.
[Wed Aug 28 09:20:18 CST 2019] OK
Stopping crond:                                            [  OK  ]
Starting crond:                                            [  OK  ]
Starting create SSL Certificate use Let's Encrypt...
[Wed Aug 28 09:20:19 CST 2019] Create account key ok.
[Wed Aug 28 09:20:19 CST 2019] Registering account
[Wed Aug 28 09:20:20 CST 2019] Registered
[Wed Aug 28 09:20:20 CST 2019] ACCOUNT_THUMBPRINT='JZtCG1A0C6IKqelq3MJUc6Ot52rWyrUOWK9DvwZ0k6M'
[Wed Aug 28 09:20:20 CST 2019] Creating domain key
[Wed Aug 28 09:20:21 CST 2019] The domain key is here: /usr/local/nginx/conf/ssl/www.mysite.com/www.mysite.com.key
[Wed Aug 28 09:20:21 CST 2019] Multi domain='DNS:www.mysite.com,DNS:mysite.com'
[Wed Aug 28 09:20:21 CST 2019] Getting domain auth token for each domain
[Wed Aug 28 09:20:22 CST 2019] Getting webroot for domain='www.mysite.com'
[Wed Aug 28 09:20:22 CST 2019] Getting webroot for domain='mysite.com'
[Wed Aug 28 09:20:22 CST 2019] Verifying: www.mysite.com
[Wed Aug 28 09:20:26 CST 2019] Success
[Wed Aug 28 09:20:26 CST 2019] Verifying: mysite.com
[Wed Aug 28 09:20:29 CST 2019] Success
[Wed Aug 28 09:20:29 CST 2019] Verify finished, start to sign.
[Wed Aug 28 09:20:29 CST 2019] Lets finalize the order, Le_OrderFinalize: https://acme-v02.api.letsencrypt.org/acme/finalize/64410848/975442899
[Wed Aug 28 09:20:30 CST 2019] Download cert, Le_LinkCert: https://acme-v02.api.letsencrypt.org/acme/cert/033fc44ea121920b3ddbf2749d112024a6b3
[Wed Aug 28 09:20:30 CST 2019] Cert success.
[Wed Aug 28 09:20:30 CST 2019] Your cert is in  /usr/local/nginx/conf/ssl/www.mysite.com/www.mysite.com.cer
[Wed Aug 28 09:20:30 CST 2019] Your cert key is in  /usr/local/nginx/conf/ssl/www.mysite.com/www.mysite.com.key
[Wed Aug 28 09:20:30 CST 2019] The intermediate CA cert is in  /usr/local/nginx/conf/ssl/www.mysite.com/ca.cer
[Wed Aug 28 09:20:30 CST 2019] And the full chain certs is there:  /usr/local/nginx/conf/ssl/www.mysite.com/fullchain.cer
[Wed Aug 28 09:20:30 CST 2019] Run reload cmd: /etc/init.d/nginx reload
Reload service nginx...  done
[Wed Aug 28 09:20:31 CST 2019] Reload success
Let's Encrypt SSL Certificate create successfully.
Create dhparam.pem...
Generating DH parameters, 2048 bit long safe prime, generator 2
This is going to take a long time
.......................+.................................................................+...................+............................................................................................+................................................................................................................+.....................................+......................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................+.....................................+.........+.................++*++*
Test Nginx configure file......
nginx: [emerg] invalid value "TLSv1.3" in /usr/local/nginx/conf/vhost/www.mysite.com.conf:50
nginx: configuration file /usr/local/nginx/conf/nginx.conf test failed
Reload Nginx......
nginx: [emerg] invalid value "TLSv1.3" in /usr/local/nginx/conf/vhost/www.mysite.com.conf:50

谢谢,脚本升级成功了,可是通过https://www.mysite.com 打不开

显示无法访问此网站

军哥运维代购:http://shop63846532.taobao.com/
回复 支持 反对

举报

sky
 楼主| 发表于 2019-8-28 11:48:33 | 显示全部楼层

nginx version: nginx/1.12.2
built by gcc 4.4.7 20120313 (Red Hat 4.4.7-18) (GCC)
built with OpenSSL 1.0.2l  25 May 2017
TLS SNI support enabled

谢谢了,查了下版本,好像是目前我的nginx1.12 不支持 TLSv1.3
回复 支持 反对

举报

licess
发表于 2019-8-28 13:33:46 | 显示全部楼层

sky 发表于 2019-8-28 09:31
100%[==============================================>] 139,601     --.-K/s   in 0.06s   

2019-08-2 ...

上面有错误信息,你nginx版本有点低不支持tls 1.3,lnmp安装包目录下 ./upgrade.sh nginx
升级nginx到 1.16.1 然后重启nginx就可以了
美国VPS推荐: 遨游主机LinodeLOCVPS主机云搬瓦工80VPSVultr美国VPS主机中国VPS推荐: 阿里云腾讯云。LNMP付费服务(代装/问题排查)QQ 503228080
回复 支持 反对

举报

sky
 楼主| 发表于 2019-8-28 14:20:07 | 显示全部楼层

licess 发表于 2019-8-28 13:33
上面有错误信息,你nginx版本有点低不支持tls 1.3,lnmp安装包目录下 ./upgrade.sh nginx
升级nginx到 1. ...

谢谢了。明白了
Linux下Nginx+MySQL+PHP自动安装工具:https://lnmp.org
回复 支持 反对

举报

返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 注册

本版积分规则

小黑屋|手机版|Archiver|VPS侦探 ( 鲁ICP备16040043号-1 )

GMT+8, 2024-9-22 12:30 , Processed in 0.029753 second(s), 17 queries .

Powered by Discuz! X3.4

© 2001-2023 Discuz! Team.

快速回复 返回顶部 返回列表