From: "Paul Smedley" Received: from [192.168.100.201] (HELO mail.2rosenthals.com) by 2rosenthals.com (CommuniGate Pro SMTP 5.4.10) with ESMTP id 10572838 for ecs-isp@2rosenthals.com; Mon, 12 Aug 2024 03:41:09 -0400 Received: from secmgr-va.2rosenthals.com ([50.73.8.217]:58943 helo=mail2.2rosenthals.com) by mail.2rosenthals.com with esmtps (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.97.1) (envelope-from ) id 1sdPfo-000000003Sm-14CX for ecs-isp@2rosenthals.com; Mon, 12 Aug 2024 03:41:00 -0400 Received: from flamingo.ash.relay.mailchannels.net ([23.83.222.60]:55547) by mail2.2rosenthals.com with esmtps (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.97.1) (envelope-from ) id 1sdPfk-000000000gm-114X for ecs-isp@2rosenthals.com; Mon, 12 Aug 2024 03:40:56 -0400 X-Sender-Id: perthwebhosting|x-authuser|paul@smedley.id.au Received: from relay.mailchannels.net (localhost [127.0.0.1]) by relay.mailchannels.net (Postfix) with ESMTP id 92E45947518 for ; Mon, 12 Aug 2024 07:40:54 +0000 (UTC) Received: from colossiansvm.perthwebhosting.net.au (unknown [127.0.0.6]) (Authenticated sender: perthwebhosting) by relay.mailchannels.net (Postfix) with ESMTPA id 0C36F9463E4 for ; Mon, 12 Aug 2024 07:40:52 +0000 (UTC) ARC-Seal: i=1; s=arc-2022; d=mailchannels.net; t=1723448453; a=rsa-sha256; cv=none; b=x3cjb9zKnR0aXdAzu+YwmNPhyGENtJ8vmjQnqDDzZg78d23fvtxjQG7xF3ugMmlpBeYLUT NUY/HN1zuT6s0zGRUfAGF8X6gr4+eZOAfC21HNXilapOUWWwKdUGhsExotbrMzgGMQpb9W gpDvbfstM7RCxLQxFnrIcJ6Wktg5jqjnW9Q1nyN+E/PWqPS2ob2TT69tey2eh6bCrwP+bQ fZN7Fde+5r6Vn03Ib6mSWiKisVSBnfWmFMSh83ImxNj+GkB3VvqP3k5hf/l7GI56eODaGY HVrj2CSQ/VDtT9S7EuzvzIdx2NCyC58aNiYJqP1O/ZqNiqqGB1ZPcBgKkkIM3g== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=mailchannels.net; s=arc-2022; t=1723448453; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=rvb2OeQkRosSVwnJAXYH+OOXIO0QSjkpkdKjG50GscE=; b=5KDwDwyOJcpLvcXiU8emYDrnwitdz09DL7JQJpFHjjlmdDb7ZvY4rSIw5rKKRyL9VMKtD3 7QP0//JV3CdeAaojSRnO0OozvQ3xhOVuwED7Or5fypAxa2hZD701jgzOTjcr5aK2qLpR46 +Utd3pr4jrC9t0pssN3UahBRYYu31Y04CWJRbnAznF91+E04gq8h69FQDxByVbIOlK1BqE qUzlVYZkj95yZDkwv9C1HKCXc+PFQetiuy3fFTxhbvRTg/P0Mw56Zq3f4Q7/tZ1ehzdbiC S6xJbF/3/kk/sgj1CBl3YSDEzue+JqVY4BCnNrZoAZU6mL21jZUfyG7fzTIX3g== ARC-Authentication-Results: i=1; rspamd-68c6c69487-2p5bm; auth=pass smtp.auth=perthwebhosting smtp.mailfrom=paul@smedley.id.au X-Sender-Id: perthwebhosting|x-authuser|paul@smedley.id.au X-MC-Relay: Neutral X-MailChannels-SenderId: perthwebhosting|x-authuser|paul@smedley.id.au X-MailChannels-Auth-Id: perthwebhosting X-Thread-Irritate: 225965a3047c25d7_1723448453682_177954494 X-MC-Loop-Signature: 1723448453682:722323697 X-MC-Ingress-Time: 1723448453682 Received: from colossiansvm.perthwebhosting.net.au (colossiansvm.perthwebhosting.net.au [103.13.84.198]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384) by 100.96.136.44 (trex/7.0.2); Mon, 12 Aug 2024 07:40:53 +0000 Received: from smedley.org ([45.249.117.21]:57954 helo=[192.168.1.159]) by colossiansvm.perthwebhosting.net.au with esmtpsa (TLS1.3) tls TLS_AES_128_GCM_SHA256 (Exim 4.97.1) (envelope-from ) id 1sdPfg-00000002SHR-0A0D for ecs-isp@2rosenthals.com; Mon, 12 Aug 2024 15:40:50 +0800 Message-ID: Date: Mon, 12 Aug 2024 17:10:49 +0930 MIME-Version: 1.0 User-Agent: Mozilla Thunderbird Subject: Re: [eCS-ISP] Apache HTTPS To: eCS ISP Mailing List References: Content-Language: en-AU In-Reply-To: Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 8bit X-AuthUser: paul@smedley.id.au Hey Steven, On 12/8/24 11:58, Steven Levine wrote: > In , on 07/23/24 > at 12:20 PM, "Massimo S." said: > > Hi Massimo, > > Running: > > 10-03-19 3:26 2,223,572 124 uacme.exe > >> uacme --version > uacme.exe: version 1.0.19 > > What's causing curl to fail here? > >> uacme -v new > uacme.exe: version 1.0.19 starting on Sun, 11 Aug 2024 19:30:36 uacme.exe: > loading key from /etc/ssl/uacme/private/key.pem > uacme.exe: /etc/ssl/uacme/private/key.pem not found > uacme.exe: generating new 2048-bit RSA key > uacme.exe: key saved to /etc/ssl/uacme/private/key.pem > uacme.exe: fetching directory at > https://acme-v02.api.letsencrypt.org/directory uacme.exe: curl_get: GET > https://acme-v02.api.letsencrypt.org/directory failed: Problem with the > SSL CA cert (path? access rights?) > uacme.exe: curl_get: waiting 5 seconds before retrying > uacme.exe: curl_get: GET https://acme-v02.api.letsencrypt.org/directory > failed: Problem with the SSL CA cert (path? access rights?) > >> curl https://acme-v02.api.letsencrypt.org/directory > works as expected. > > Am I missing a required subdirectory? > If I was to guess,  uacme is built using a  staically linked libcurl which I built locally, which doesn't look in the right spot for SSL root certificates. I should probably rebuild uacme using libcurl from rpm.... Cheers, Paul