fsebugoutzone.org:9999

       Post A9NN4bHPJc0UsRsSqu by bograt@pleroma.bograham.xyz
 (DIR) More posts by bograt@pleroma.bograham.xyz
 (DIR) Post #A9MezvFBGYGHMbnM9o by bograt@pleroma.bograham.xyz
       2021-07-17T01:34:42.798878Z
       
       0 likes, 0 repeats
       
       Am I alone in having issues with mail certificate issues with certbot?I tried to add listen [::]:80; but nginx was being a PITA too, so I hit the limit of failed auths and have to wait an hour to debug. The way I fixed it last time was just completely resetting the thing, but I’ll be damned if I’m dealing with TXT records through the browser again.
       
 (DIR) Post #A9NN4alrCulnIb7Gfw by bonifartius@qoto.org
       2021-07-17T06:59:50Z
       
       1 likes, 0 repeats
       
       @bograt do you use the staging environment for testing? the limits are much higher there.
       
 (DIR) Post #A9NN4bHPJc0UsRsSqu by bograt@pleroma.bograham.xyz
       2021-07-17T09:48:33.835068Z
       
       0 likes, 0 repeats
       
       @bonifartius oh shit I forgot about that. I&#39;ll do that next time certbot craps out. I didn&#39;t think too, since it&#39;s suppose to just werk
       
 (DIR) Post #A9NSIyzOSbnQEg841I by iron_bug@friendica.ironbug.org
       2021-07-17T10:43:32Z
       
       1 likes, 0 repeats
       
       there&#39;re usually HTTP-01 check and it demands nginx settings like location ^~ /.well-known/acme-challenge/ {   alias /var/www/.well-known/acme-challenge/;   allow all;   default_type &quot;text/plain&quot;;to allow it write to some place where the authentication record will be stored.but operating with TXT records it&#39;s DNS-01 (used for wildcard certs, for instance) and I don&#39;t know if there&#39;re automated hooks for this. it&#39;s dependent on domain name provider.
       
 (DIR) Post #A9NeVyBByt08wHbgqO by bograt@pleroma.bograham.xyz
       2021-07-17T13:04:00.417750Z
       
       0 likes, 0 repeats
       
       @iron_bug HOLY SHIT, Thanks a ton for this! That extra bit of config was what I needed. I knew that it was having trouble finding this, but I didn’t know how to fix it since iirc it just werks on my static site and default pleroma instance.
       
 (DIR) Post #A9PaRrORG9aJEUVXIu by iron_bug@friendica.ironbug.org
       2021-07-17T14:52:01Z
       
       1 likes, 0 repeats
       
       well, no problem. ACME certification bot checks for this standard path and it must be accessible for reading. the script posts files there and the server requests them, afterall. and it you already have working certificate, it can work on 443 port, without 80. 80 port is only needed if your certificate went outdated.