From: "Massimo S." <ecs-isp@2rosenthals.com>
Received: from [192.168.100.201] (HELO mail.2rosenthals.com)
  by 2rosenthals.com (CommuniGate Pro SMTP 5.4.10)
  with ESMTP id 11072212 for ecs-isp@2rosenthals.com; Wed, 09 Oct 2024 04:29:08 -0400
Received: from secmgr-va.randr ([192.168.200.201]:46283 helo=mail2.2rosenthals.com)
	by mail.2rosenthals.com with esmtp (Exim 4.97.1)
	(envelope-from <ml@ecomstation.it>)
	id 1syS44-000000004MK-1Rvi
	for ecs-isp@2rosenthals.com;
	Wed, 09 Oct 2024 04:29:01 -0400
Received: from mail2.quasarbbs.net ([80.86.52.115]:10120)
	by mail2.2rosenthals.com with esmtp (Exim 4.97.1)
	(envelope-from <ml@ecomstation.it>)
	id 1syS40-000000005eQ-0veQ
	for ecs-isp@2rosenthals.com;
	Wed, 09 Oct 2024 04:28:57 -0400
X-SASI-Hits: BODYTEXTP_SIZE_3000_LESS 0.000000, BODY_SIZE_2000_2999 0.000000,
	BODY_SIZE_5000_LESS 0.000000, BODY_SIZE_7000_LESS 0.000000,
	CTE_8BIT 0.000000, HTML_00_01 0.050000, HTML_00_10 0.050000,
	IN_REP_TO 0.000000, LEGITIMATE_SIGNS 0.000000,
	MSGID_SAMEAS_FROM_HEX_844412 0.100000, MSG_THREAD 0.000000,
	NO_CTA_URI_FOUND 0.000000, NO_URI_HTTPS 0.000000, REFERENCES 0.000000,
	REPLYTO_SAMEAS_FROM 0.000000, SENDER_NO_AUTH 0.000000, SUSP_DH_NEG 0.000000,
	TO_IN_SUBJECT 0.500000, USER_AGENT 0.000000, __ANY_URI 0.000000,
	__BODY_NO_MAILTO 0.000000, __BOUNCE_CHALLENGE_SUBJ 0.000000,
	__BOUNCE_NDR_SUBJ_EXEMPT 0.000000, __CT 0.000000, __CTE 0.000000,
	__CT_TEXT_PLAIN 0.000000, __DQ_NEG_DOMAIN 0.000000, __DQ_NEG_HEUR 0.000000,
	__DQ_NEG_IP 0.000000, __FORWARDED_MSG 0.000000,
	__FROM_DOMAIN_NOT_IN_BODY 0.000000, __FROM_NAME_NOT_IN_ADDR 0.000000,
	__FROM_NAME_NOT_IN_BODY 0.000000, __FUR_HEADER 0.000000, __HAS_FROM 0.000000,
	__HAS_MSGID 0.000000, __HAS_REFERENCES 0.000000, __HAS_REPLYTO 0.000000,
	__INVOICE_MULTILINGUAL 0.000000, __IN_REP_TO 0.000000, __MAIL_CHAIN 0.000000,
	__MIME_BOUND_CHARSET 0.000000, __MIME_TEXT_ONLY 0.000000,
	__MIME_TEXT_P 0.000000, __MIME_TEXT_P1 0.000000, __MIME_VERSION 0.000000,
	__MOZILLA_USER_AGENT 0.000000, __MSGID_HEX_844412 0.000000,
	__NO_HTML_TAG_RAW 0.000000, __REFERENCES 0.000000,
	__REPLYTO_SAMEAS_FROM_ACC 0.000000, __REPLYTO_SAMEAS_FROM_ADDY 0.000000,
	__REPLYTO_SAMEAS_FROM_DOMAIN 0.000000, __SANE_MSGID 0.000000,
	__SCAN_D_NEG 0.000000, __SCAN_D_NEG2 0.000000, __SCAN_D_NEG_HEUR 0.000000,
	__SCAN_D_NEG_HEUR2 0.000000, __STOCK_PHRASE_7 0.000000,
	__SUBJ_ALPHA_NEGATE 0.000000, __SUBJ_REPLY 0.000000,
	__TO_IN_SUBJECT 0.000000, __TO_MALFORMED_2 0.000000, __TO_NAME 0.000000,
	__TO_NAME_DIFF_FROM_ACC 0.000000, __TO_REAL_NAMES 0.000000,
	__URI_MAILTO 0.000000, __URI_NO_WWW 0.000000, __URI_NS 0.000000,
	__USER_AGENT 0.000000
X-SASI-Probability: 10%
X-SASI-RCODE: 200
X-SASI-Version: Antispam-Engine: 5.1.4, AntispamData: 2024.10.9.80016
X-SASI-Hits: BODYTEXTP_SIZE_3000_LESS 0.000000, BODY_SIZE_2000_2999 0.000000,
	BODY_SIZE_5000_LESS 0.000000, BODY_SIZE_7000_LESS 0.000000,
	CTE_8BIT 0.000000, HTML_00_01 0.050000, HTML_00_10 0.050000,
	IN_REP_TO 0.000000, LEGITIMATE_SIGNS 0.000000,
	MSGID_SAMEAS_FROM_HEX_844412 0.100000, MSG_THREAD 0.000000,
	NO_CTA_URI_FOUND 0.000000, NO_URI_HTTPS 0.000000, REFERENCES 0.000000,
	REPLYTO_SAMEAS_FROM 0.000000, SUSP_DH_NEG 0.000000, TO_IN_SUBJECT 0.500000,
	USER_AGENT 0.000000, __ANY_URI 0.000000, __AUTH_RES_PASS 0.000000,
	__BODY_NO_MAILTO 0.000000, __BOUNCE_CHALLENGE_SUBJ 0.000000,
	__BOUNCE_NDR_SUBJ_EXEMPT 0.000000, __CT 0.000000, __CTE 0.000000,
	__CT_TEXT_PLAIN 0.000000, __DQ_NEG_DOMAIN 0.000000, __DQ_NEG_HEUR 0.000000,
	__DQ_NEG_IP 0.000000, __FORWARDED_MSG 0.000000,
	__FROM_DOMAIN_NOT_IN_BODY 0.000000, __FROM_NAME_NOT_IN_ADDR 0.000000,
	__FROM_NAME_NOT_IN_BODY 0.000000, __FUR_HEADER 0.000000, __HAS_FROM 0.000000,
	__HAS_MSGID 0.000000, __HAS_REFERENCES 0.000000, __HAS_REPLYTO 0.000000,
	__INVOICE_MULTILINGUAL 0.000000, __IN_REP_TO 0.000000, __MAIL_CHAIN 0.000000,
	__MIME_BOUND_CHARSET 0.000000, __MIME_TEXT_ONLY 0.000000,
	__MIME_TEXT_P 0.000000, __MIME_TEXT_P1 0.000000, __MIME_VERSION 0.000000,
	__MOZILLA_USER_AGENT 0.000000, __MSGID_HEX_844412 0.000000,
	__NO_HTML_TAG_RAW 0.000000, __REFERENCES 0.000000,
	__REPLYTO_SAMEAS_FROM_ACC 0.000000, __REPLYTO_SAMEAS_FROM_ADDY 0.000000,
	__REPLYTO_SAMEAS_FROM_DOMAIN 0.000000, __SANE_MSGID 0.000000,
	__SCAN_D_NEG 0.000000, __SCAN_D_NEG2 0.000000, __SCAN_D_NEG_HEUR 0.000000,
	__SCAN_D_NEG_HEUR2 0.000000, __STOCK_PHRASE_7 0.000000,
	__SUBJ_ALPHA_NEGATE 0.000000, __SUBJ_REPLY 0.000000,
	__TO_IN_SUBJECT 0.000000, __TO_MALFORMED_2 0.000000, __TO_NAME 0.000000,
	__TO_NAME_DIFF_FROM_ACC 0.000000, __TO_REAL_NAMES 0.000000,
	__URI_MAILTO 0.000000, __URI_NO_WWW 0.000000, __URI_NS 0.000000,
	__USER_AGENT 0.000000
X-SASI-Probability: 10%
X-SASI-RCODE: 200
X-SASI-Version: Antispam-Engine: 5.1.4, AntispamData: 2024.10.9.80016
Received: from [192.168.10.199] (dtp [192.168.10.199]) by srv2 (Weasel v2.9-0001
 ) for <ecs-isp@2rosenthals.com>; Wed, 09 Oct 2024 10:16:43 -0000
Subject: Re: [eCS-ISP] HTTPS-Misery (for Steven)
Reply-To: ml@ecomstation.it
To: eCS ISP Mailing List <ecs-isp@2rosenthals.com>
References: <list-11070656@2rosenthals.com> <list-11072207@2rosenthals.com>
Organization: Massimo S.
Message-ID: <5b9667e4-b213-1472-4399-167ce08ad4d6@ecomstation.it>
Date: Wed, 9 Oct 2024 10:28:53 +0200
User-Agent: Mozilla/5.0 (OS/2; U; Warp 4.5; it-IT; rv:1.7.13) Gecko/20060424
 Thunderbird/1.0.8 Mnenhy/0.7.4.0
MIME-Version: 1.0
In-Reply-To: <list-11072207@2rosenthals.com>
Content-Type: text/plain; charset=iso-8859-15; format=flowed
Content-Language: it-IT
Content-Transfer-Encoding: 8bit

i'm reading the code it expect that virtual hosts directories
to have a specific name/path

but here it's not the same, they have different path names
some is abbreviated etc.

so i can't use this script
it requires too many modification to all my environment
i've too much stuff (scripts, bkups, etc. that expect these paths)

i've not the sufficient skill to fully modify your script
i'm sorry
even to understand it completely it could take months

i'm asking you an help

it should be possible only to add the "check http-01 method"
to this simpler (or naive :-) script?

so that i can keep on using all my infrastructure scripts and paths

maybe it should look like this:


/* comando di hook per client uacme */

parse arg var1 var2 var3 var4 var5

if var2 \== 'http-01' then call "issues"

myfile = 'X:\apache\htdocs\mywebsite\.well-known\acme-challenge\'||var4
call SysFileDelete 'X:\apache\htdocs\mywebsite\.well-known\acme-challenge\'||var4
rc= LINEOUT(myfile,var5)

issues:

"send a notify"
"and try again"
exit

return

i've some tents of domains, but it's not a problem to create a new hook script
for a new domain, since normally there is only a new website per year

thanks

massimo

Il 09/10/2024 09:43, Massimo S. ha scritto:
> Hi Steven,
> 
> is there a place to download the script?
> or could you send a zip?
> 
> thanks
> 
> massimo
> 
> 
> Il 07/10/2024 21:58, Steven Levine ha scritto:
>> In <list-11070551@2rosenthals.com>, on 10/07/24
>>     at 08:22 PM, "Massimo S." <ecs-isp@2rosenthals.com> said:
>>
>>> i'm trying to catch that challenge value to verify when they accept
>>> HTTP-01 to improve the script
>>
>> I have appended a copy of the uacme-hook.cmd that Dan and I use.
>>
>> The interesting code is above the
>>
>>    /*==============================================================================*/
>>    /*=== SkelRexxFunc standards - Delete unused - Move modified above this
>> mark ===*/
>>    /*==============================================================================*/
>>
>> separator.  Everything below is boilerplate code that is maintained by my
>> tools.
>>
>> You may notice that the script is almost 100% generic.  Since our mapping
>> of domain names to document roots is consistent, I saw no need to parse
>> the httpd conf files or read the mappings from an external file.
>>
>> The relevant mapping code follows the
>>
>>    /* Map domain to VirtualHost docroot directory */
>>
>> comment.
>>
>> To handle possible uacme.exe failures, we back up the certificates before
>> the uacme.exe runs and configure httpd to use the certificates as created
>> by uacme.
>>
>> Steven
>>