turbine2
Posts: 47
Joined: Thu Dec 06, 2012 11:21 am

Letsencrypt error on checking for new certificate

Fri May 24, 2019 8:10 am

I've had a look around and found this posting but it's not quite the same.

viewtopic.php?f=29&t=236694&p=1447496&h ... t#p1447496

I have rasbian stretch rather than jessie but I'm getting the same error:-
OpenSSL version 1.0.1 is not longer supported by the OpenSSL project.

Code: Select all

[email protected]:~ $ cat /etc/os-release
PRETTY_NAME="Raspbian GNU/Linux 9 (stretch)"
NAME="Raspbian GNU/Linux"
VERSION_ID="9"
VERSION="9 (stretch)"
ID=raspbian
ID_LIKE=debian
If I look at the OpenSSL version I have installed 1.1.0j

Code: Select all

[email protected]:~ $ sudo apt-cache policy openssl
openssl:
  Installed: 1.1.0j-1~deb9u1
  Candidate: 1.1.0j-1~deb9u1
  Version table:
 *** 1.1.0j-1~deb9u1 500
I've rebooted just in case it's an old version running but to no avail. So my question is where is LetsEncrypt getting this old version of OpenSSL from?

Many thanks
David

User avatar
DougieLawson
Posts: 35116
Joined: Sun Jun 16, 2013 11:19 pm
Location: Basingstoke, UK
Contact: Website Twitter

Re: Letsencrypt error on checking for new certificate

Fri May 24, 2019 9:04 am

Note: Having anything remotely humorous in your signature is completely banned on this forum.

Any DMs sent on Twitter will be answered next month.

This is a hippy & doctor free zone.

turbine2
Posts: 47
Joined: Thu Dec 06, 2012 11:21 am

Re: Letsencrypt error on checking for new certificate

Fri May 24, 2019 9:43 am

Ah, I was starting to suspect python. Thanks for that.

Now all I have to work out is why it's not able to get to the files it creates in .well-known/

One step forward at least.
David

User avatar
DougieLawson
Posts: 35116
Joined: Sun Jun 16, 2013 11:19 pm
Location: Basingstoke, UK
Contact: Website Twitter

Re: Letsencrypt error on checking for new certificate

Fri May 24, 2019 9:51 am

Just edit /usr/bin/certbot-auto to replace

Code: Select all

pycparser==2.19 \
    --hash=sha256:a988718abfad80b6b157acce7bf130a30876d27603738ac39f140993246b25b3 
with

Code: Select all

pycparser==2.19 \
    --hash=sha256:a988718abfad80b6b157acce7bf130a30876d27603738ac39f140993246b25b3 \
    --hash=sha256:344870c533812cb119c5475b5aed033ec546118711338ff9b2b78e67098d64e7
Note: Having anything remotely humorous in your signature is completely banned on this forum.

Any DMs sent on Twitter will be answered next month.

This is a hippy & doctor free zone.

Return to “Networking and servers”