After installing Letsencrypt I get the "Congradulations you have succefully installed certificate" blah blah blah. However when I navigate Chrome to https://havens.synchronetbbs.org I get this:

This certificate has been verified for the following usages:

Issued To

Common Name (CN) havens.synchronetbbs.org
Organization (O) Havens BBS
Organizational (OU) <Not Part of Certificate>

Issued By

Common Name (CN) havens.synchronetbbs.org
Organization (O) Havens BBS
Organizational (OU) <Not Part Of Certificate>

Validity Period

Issued On Monday, November 4, 2019 at 8:30:57 PM
Expires On Saturday, December 15, 2035 at 7:00:00 PM

Fingerprints
SHA-256 Fingerprint CB AC A4 D0 60 42 62 2B F1 25 B6 F3 05 E8 AB F9
A3 01 27 56 C2 7F 67 65 58 37 EA 16 92 C8 1D D1
SHA-1 Fingerprint 45 0A D4 5A 6A EB CB 52 4B 31 26 4B EB C6 37 87
A2 38 AC 4D


Now what?

H A V E N S B B S havens.synchro.net:23

---
þ Synchronet þ Havens BBS havens.synchro.net
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

Re: Letencrypt
By: HusTler to All on Mon Dec 09 2019 05:48 pm

After installing Letsencrypt I get the "Congradulations you have succefully installed certificate" blah blah blah. However when I navigate Chrome to https://havens.synchronetbbs.org I get this:

This certificate has been verified for the following usages:

Issued To

Common Name (CN) havens.synchronetbbs.org
Organization (O) Havens BBS
Organizational (OU) <Not Part of Certificate>

Issued By

Common Name (CN) havens.synchronetbbs.org
Organization (O) Havens BBS
Organizational (OU) <Not Part Of Certificate>

Validity Period

Issued On Monday, November 4, 2019 at 8:30:57 PM
Expires On Saturday, December 15, 2035 at 7:00:00 PM

Fingerprints
SHA-256 Fingerprint CB AC A4 D0 60 42 62 2B F1 25 B6 F3 05 E8 AB F9
A3 01 27 56 C2 7F 67 65 58 37 EA 16 92 C8 1D D1
SHA-1 Fingerprint 45 0A D4 5A 6A EB CB 52 4B 31 26 4B EB C6 37 87
A2 38 AC 4D

If I use firefox I get this:

Warning: Potential Security Risk Ahead

Firefox detected a potential security threat and did not continue to havens.synchronetbbs.org. If you visit this site, attackers could try to steal information like your passwords, emails, or credit card details.

Learn more...
H A V E N S B B S havens.synchro.net:23

---
þ Synchronet þ Havens BBS havens.synchro.net
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

Re: Letencrypt
By: HusTler to All on Mon Dec 09 2019 05:48 pm

If I use firefox I get this:

Warning: Potential Security Risk Ahead

Firefox detected a potential security threat and did not continue to havens.synchronetbbs.org. If you visit this site, attackers could try to steal information like your passwords, emails, or credit card details.

Learn more...
H A V E N S B B S havens.synchro.net:23

---
¨ Synchronet ¨ Havens BBS havens.synchro.net

havens.synchronetbbs.org uses an invalid security certificate.

The certificate is not trusted because it is self-signed.

Error code: MOZILLA_PKIX_ERROR_SELF_SIGNED_CERT

---
þ Synchronet þ Richard's Fun House BBS | http://richardf.ddns.net
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

After installing Letsencrypt I get the "Congradulations you have succefully installed certificate" blah blah blah. However when I

navigate

Chrome to https://havens.synchronetbbs.org I get this:

This certificate has been verified for the following usages:

Issued To

Common Name (CN) havens.synchronetbbs.org
Organization (O) Havens BBS
Organizational (OU) <Not Part of Certificate>

Issued By

Common Name (CN) havens.synchronetbbs.org
Organization (O) Havens BBS
Organizational (OU) <Not Part Of Certificate>

Validity Period

Issued On Monday, November 4, 2019 at 8:30:57 PM
Expires On Saturday, December 15, 2035 at 7:00:00 PM

Fingerprints
SHA-256 Fingerprint CB AC A4 D0 60 42 62 2B F1 25 B6 F3 05 E8 AB

F9

A3 01 27 56 C2 7F 67 65 58 37 EA 16 92 C8 1D D1
SHA-1 Fingerprint 45 0A D4 5A 6A EB CB 52 4B 31 26 4B EB C6 37

87

A2 38 AC 4D

Now what?

That is the creds from ssl.cert created by SBBS, I am not sure how you
get the creds to point to the letsyncrypt.key

---
þ Synchronet þ AlleyCat! BBS - http://alleycat.synchro.net:81
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

Re: Letencrypt
By: Richard Williamson to HusTler on Mon Dec 09 2019 09:24 pm

If I use firefox I get this:

havens.synchronetbbs.org uses an invalid security certificate.

The certificate is not trusted because it is self-signed.

Yes. It say that when I use chrome. So how can I fix that?


H A V E N S B B S havens.synchro.net:23

---
þ Synchronet þ Havens BBS havens.synchro.net
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

Re: Re: Letencrypt
By: Mortifis to HusTler on Tue Dec 10 2019 03:45 am

Common Name (CN) havens.synchronetbbs.org
Organization (O) Havens BBS
Organizational (OU) <Not Part Of Certificate>

Validity Period

Issued On Monday, November 4, 2019 at 8:30:57 PM
Expires On Saturday, December 15, 2035 at 7:00:00 PM

Fingerprints
SHA-256 Fingerprint CB AC A4 D0 60 42 62 2B F1 25 B6 F3 05 E8 AB

F9

A3 01 27 56 C2 7F 67 65 58 37 EA 16 92 C8 1D D1
SHA-1 Fingerprint 45 0A D4 5A 6A EB CB 52 4B 31 26 4B EB C6 37

87

A2 38 AC 4D

Now what?

That is the creds from ssl.cert created by SBBS, I am not sure how you
get the creds to point to the letsyncrypt.key

I'm at a loss here. Other then the letsencrypt.org and letsycrypt module documentation are there any other trouble shooting pages?
H A V E N S B B S havens.synchro.net:23

---
þ Synchronet þ Havens BBS havens.synchro.net
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

Re: Re: Letencrypt
By: HusTler to Mortifis on Tue Dec 10 2019 09:39 am

I'm at a loss here. Other then the letsencrypt.org and letsycrypt module documentation are there any other trouble shooting pages?

Try deleting or renaming your ctrl/ssl.cert file (this one appears to be self-signed, *not* signed by LetsEncrypt) and then re-run the letsyncrypt.js script, it should recreate the ssl.cert file, this time signed by LetsEncrypt.

digital man

Synchronet "Real Fact" #105:
You're missing the action in #synchronet at irc.synchro.net!
Norco, CA WX: 57.6øF, 72.0% humidity, 0 mph SSW wind, 0.00 inches rain/24hrs --- SBBSecho 3.10-Linux
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

Re: Re: Letencrypt
By: Digital Man to HusTler on Tue Dec 10 2019 09:14 am

Try deleting or renaming your ctrl/ssl.cert file (this one appears to be self-signed, *not* signed by LetsEncrypt) and then re-run the

letsyncrypt.js

script, it should recreate the ssl.cert file, this time signed by LetsEncrypt.

Here's a copy of my letsyncrypt.ini is this correct? if it's correct I run jsexec letsyncrypt.js new-key ????


; $Id: letsyncrypt.ini,v 1.1 2019/07/24 22:32:54 rswindell Exp $
; For use with exec/letsyncrypt.js
; See http://wiki.synchro.net/module:letsyncrypt for details

Host = acme-v02.api.letsencrypt.org
Directory = /directory
TOSAgreed = true
GroupReadableKeyFile = false

[Domains]
havens.synchronetbbs.org = /sbbs/web/root
havens.synchro.net = /sbbs/web/root
[key_id] acme-v02.api.letsencrypt.org=https://acme-v02.api.letsencrypt.org/acme/acct/735

[State]
DomainHash=dryCdMsgxU3j7J2txsIs0w==
Host=acme-v02.api.letsencrypt.org

H A V E N S B B S havens.synchro.net:23

---
þ Synchronet þ Havens BBS havens.synchro.net
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

Re: Re: Letencrypt
By: HusTler to Digital Man on Wed Dec 11 2019 08:24 am

Re: Re: Letencrypt
By: Digital Man to HusTler on Tue Dec 10 2019 09:14 am

Try deleting or renaming your ctrl/ssl.cert file (this one appears to be self-signed, *not* signed by LetsEncrypt) and then re-run the letsyncrypt.js script, it should recreate the ssl.cert file, this time signed by LetsEncrypt.

Here's a copy of my letsyncrypt.ini is this correct? if it's correct I run jsexec letsyncrypt.js new-key ????

I think you mean "--new-key", but I you shouldn't need that. Just setup the timed event as shown on the wiki page.

; $Id: letsyncrypt.ini,v 1.1 2019/07/24 22:32:54 rswindell Exp $
; For use with exec/letsyncrypt.js
; See http://wiki.synchro.net/module:letsyncrypt for details

Host = acme-v02.api.letsencrypt.org
Directory = /directory
TOSAgreed = true
GroupReadableKeyFile = false

[Domains]
havens.synchronetbbs.org = /sbbs/web/root
havens.synchro.net = /sbbs/web/root

Assuming /sbbs/web/root is the path to your web/root, yes, that would be correct. Double-check the [web] RootDirectory setting in your ctrl/sbbs.ini file.

digital man

Synchronet "Real Fact" #27:
Rob Swindell (digital man) was born approximately 4 hours before the Unix epoch.
Norco, CA WX: 53.6øF, 69.0% humidity, 0 mph W wind, 0.00 inches rain/24hrs
--- SBBSecho 3.10-Linux
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

Re: Re: Letencrypt
By: Digital Man to HusTler on Wed Dec 11 2019 09:07 am

The TOSAgreed variable is in two places. It's in the .ini and in the .js. I had a problem with it when I ran it initially and then I took a step back and reviewed the two files involved in the process and found that in the .js file, the variable is set to false. I changed it to true, re-ran it and it worked fine.

---
þ Synchronet þ CJSPLACE - cjsplace.thruhere.net
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

Re: Re: Letencrypt
By: CJ to Digital Man on Thu Dec 12 2019 05:42:18

The TOSAgreed variable is in two places. It's in the .ini and in the .js.

I had a problem with it

when I ran it initially and then I took a step back and reviewed the two

files involved in the

process and found that in the .js file, the variable is set to false. I

changed it to true, re-ran

it and it worked fine.

Editing the script is not necessary. There was a problem with your INI file.

TOSAgreed *defaults* to false in the script. It only remains false if the script can't read your INI file, if TOSAgreed is set to false in your INI file, or if TOSAgreed is missing from your INI file.

(Or perhaps you were using some older version of the script with a bug.)

---
echicken
electronic chicken bbs - bbs.electronicchicken.com
þ Synchronet þ electronic chicken bbs - bbs.electronicchicken.com
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

Re: Re: Letencrypt
By: echicken to CJ on Thu Dec 12 2019 06:42 pm

Editing the script is not necessary. There was a problem with your INI

file.

TOSAgreed *defaults* to false in the script. It only remains false if the

script can't read your INI file, if TOSAgreed

is set to false in your INI file, or if TOSAgreed is missing from your

INI file.

(Or perhaps you were using some older version of the script with a bug.)

Entirely possible.

-CJ

CJ

---
þ Synchronet þ CJSPLACE - cjsplace.thruhere.net
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

Re: Re: Letencrypt
By: CJ to Digital Man on Thu Dec 12 2019 05:42 am

The TOSAgreed variable is in two places. It's in the .ini and in the .js.
I had a problem with it when I ran it initially and then I took a step back and reviewed the two files involved in the process and found that in the

.js

file, the variable is set to false. I changed it to true, re-ran it and it

I am very happy for you. That has not been my exprience. Apparently I'm pissing off some Synchronet Sysops so I'll leave it alone.

H A V E N S B B S havens.synchro.net:23

---
þ Synchronet þ Havens BBS havens.synchro.net
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

Re: Re: Letencrypt
By: CJ to Digital Man on Thu Dec 12 2019 05:42:18

The TOSAgreed variable is in two places. It's in the .ini and in the .js.

I had a problem with it when I ran it initially and then I took a step back and reviewed the two files involved in the process and found that in

the .js file, the variable is set to false. I changed it to true, re-ran

it and it worked fine.

IIUC, it is supposed to default to false in the js file... then when the config file is loaded, it'll override the setting with what is in the config file... you must edit the config file to change the TOS setting first before you try running the js file... this gives you a chance to actually review the TOS and decide if you agree to them or not...


)\/(ark

---
þ Synchronet þ The SouthEast Star Mail HUB - SESTAR
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)