When going to https://geo.synchro.net I get a "Your connect to this site is not secure" warning and that my "Certificate is not valid"/

My letsencrypt.ini settings are:

Host = acme-v02.api.letsencrypt.org
Directory = /directory
TOSAgreed = true
GroupReadableKeyFile = false
SysopEmail = sysop@geo.synchro.net

But I keep getting this error:

8/7 09:05:42a 3144 TLS WARNING 'Received TLS alert message: Certificate unknown' (-26) setting session active

When the SYNCRYPT timed event occurs, this is what the log reports:

8/7 09:12:04a BBS Events Semaphore signaled for Timed Event: SYNCRYPT
8/7 09:12:04a SYNCRYPT Running timed event: SYNCRYPT
8/7 09:12:04a SYNCRYPT Timed event: SYNCRYPT returned 0

Any idea what I'm doing wrong here?

---
￭ Synchronet ￭ GeoSync - geo.synchro.net
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

Re: HTTPS Help
By: SYS64738 to all on Wed Aug 07 2024 09:24:14

When going to https://geo.synchro.net I get a "Your connect to this site is not secure" warning and that my "Certificate is not valid"/

Your website is using a self-signed certificate generated last Wednesday. No browser will trust it by default.

My letsencrypt.ini settings are:

The settings look fine, but if that's the actual filename, you need to move it to 'ctrl/letsyncrypt.ini'.

Consider disabling the SYNCRYPT timed event for now and run the script manually in your exec/ directory like:

jsexec ./letsyncrypt.js

Additional command line options are listed in the wiki, but try running it without any parameters first:

https://wiki.synchro.net/module:letsyncrypt

This way you'll see the full output of the script. Once it's working, re-enable the timed event.

echicken
electronic chicken bbs - bbs.electronicchicken.com
---
� Synchronet � electronic chicken bbs - bbs.electronicchicken.com
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

Re: HTTPS Help
By: SYS64738 to all on Wed Aug 07 2024 09:24 am

When going to https://geo.synchro.net I get a "Your connect to this site is not secure" warning and that my "Certificate is not valid"/

My letsencrypt.ini settings are:

Host = acme-v02.api.letsencrypt.org
Directory = /directory
TOSAgreed = true
GroupReadableKeyFile = false
SysopEmail = sysop@geo.synchro.net

But I keep getting this error:

8/7 09:05:42a 3144 TLS WARNING 'Received TLS alert message: Certificate unknown' (-26) setting session active

When the SYNCRYPT timed event occurs, this is what the log reports:

8/7 09:12:04a BBS Events Semaphore signaled for Timed Event:
SYNCRYPT
8/7 09:12:04a SYNCRYPT Running timed event: SYNCRYPT
8/7 09:12:04a SYNCRYPT Timed event: SYNCRYPT returned 0

Any idea what I'm doing wrong here?

When letsyncrypt.js runs successfully, it'll add [key_id] and [State] sections to your letsyncrypt. ini file. If those sections don't exist, then letsyncrypt.js isn't running successfully. So try running letsyncrypt.js manuall (e.g. via jsexec) and watch the output for some helpful log message to give you a clue what to do.
--
digital man (rob)

Sling Blade quote #15:
Doyle Hargraves: What'cha doin' with that lawn mower blade Karl?
Norco, CA WX: 87.3�F, 45.0% humidity, 10 mph WSW wind, 0.00 inches rain/24hrs --- SBBSecho 3.20-Linux
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

Re: HTTPS Help
By: SYS64738 to all on Wed Aug 07 2024 09:24:14

Your website is using a self-signed certificate generated last Wednesday. No browser will trust it by default.

The settings look fine, but if that's the actual filename, you need to move it to 'ctrl/letsyncrypt.ini'.

Consider disabling the SYNCRYPT timed event for now and run the script manually in your exec/ directory like:

jsexec ./letsyncrypt.js

Additional command line options are listed in the wiki, but try running it without any parameters first:

https://wiki.synchro.net/module:letsyncrypt

This way you'll see the full output of the script. Once it's working, re-enable the timed event.

I did. It appears that everything is working as it should since this is a self-signed certificate. I do appreciate the pointers.

---
￭ Synchronet ￭ GeoSync - geo.synchro.net
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

When letsyncrypt.js runs successfully, it'll add [key_id] and [State] sections to your letsyncrypt. ini file. If those sections don't exist, then letsyncrypt.js isn't running successfully. So try running letsyncrypt.js manuall (e.g. via jsexec) and watch the output for some helpful log message to give you a clue what to do.
--
digital man (rob)

Yes, it added those sections to my letsyncrypt.ini file. As echicken pointed out, it's a self-signed certificate. Under that circumstance, it seems logical that I would receive those responses in my log. Or am I overlooking something?

---
￭ Synchronet ￭ GeoSync - geo.synchro.net
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

Re: HTTPS Help
By: SYS64738 to echicken on Wed Aug 07 2024 07:09 pm

https://wiki.synchro.net/module:letsyncrypt

This way you'll see the full output of the script. Once it's working, re-enable the timed event.

I did. It appears that everything is working as it should since this is a self-signed certificate. I do appreciate the pointers.

A self-signed certified means Let's Encrypt has *not* signed your certificate. --
digital man (rob)

Synchronet/BBS Terminology Definition #1:
ANSI = American National Standards Institute
Norco, CA WX: 85.2�F, 48.0% humidity, 10 mph WNW wind, 0.00 inches rain/24hrs --- SBBSecho 3.20-Linux
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

Re: HTTPS Help
By: SYS64738 to Digital Man on Wed Aug 07 2024 07:13 pm

When letsyncrypt.js runs successfully, it'll add [key_id] and [State] sections to your letsyncrypt. ini file. If those sections don't exist, then letsyncrypt.js isn't running successfully. So try running letsyncrypt.js manuall (e.g. via jsexec) and watch the output for some helpful log message to give you a clue what to do.

Yes, it added those sections to my letsyncrypt.ini file.

Ah, okay, that's a good sign.

As echicken
pointed out, it's a self-signed certificate. Under that circumstance, it seems logical that I would receive those responses in my log. Or am I overlooking something?

Self-signed means you're not using a certificate authority (e.g. Let's Encrypt). So, that's bad. You want a certified that's signed by Let's Encrypt, not a self-signed certificate.
--
digital man (rob)

Steven Wright quote #4:
99% of lawyers give the rest a bad name.
Norco, CA WX: 85.2�F, 48.0% humidity, 10 mph WNW wind, 0.00 inches rain/24hrs --- SBBSecho 3.20-Linux
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

Re: HTTPS Help
By: SYS64738 to echicken on Wed Aug 07 2024 19:09:56

I did. It appears that everything is working as it should since this is a self-signed certificate. I do appreciate the pointers.

I pointed out the self-signed cert because it indicates you aren't using a Let's Encrypt cert, instead you're still on the default one generated by the BBS.

Can you confirm that you have the config filename spelled correctly? You said 'letsencrypt.ini' while it should be 'letsyncrypt.ini' - small but important difference.

echicken
electronic chicken bbs - bbs.electronicchicken.com
---
� Synchronet � electronic chicken bbs - bbs.electronicchicken.com
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

Re: HTTPS Help
By: SYS64738 to echicken on Wed Aug 07 2024 19:09:56

I pointed out the self-signed cert because it indicates you aren't using a Let's Encrypt cert, instead you're still on the default one generated by the BBS.

Can you confirm that you have the config filename spelled correctly? You said 'letsencrypt.ini' while it should be 'letsyncrypt.ini' - small but important difference.

Sorry for the delayed response. Yes, the file name is spelled "letsyncrypt.ini". Below is how my timed event is set up:

SYNCRYPT Timed Event ════ ══════════════════════════� ��═════════════════════════� �═════════
Internal Code SYNCRYPT
Start-up Directory
Command Line ?letsyncrypt.js
Enabled Yes
Execution Node 1
Execution Months Any
Execution Days of Month Any
Execution Days of Week All
Execution Frequency 1 times a day
Requires Exclusive Execution No
Force Users Off-line For Event No
Native Executable/Script No
Use Shell or New Context No
Background Execution No
Always Run After Init/Re-init Yes
Error Log Level Error

---
￭ Synchronet ￭ GeoSync - geo.synchro.net
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

Re: HTTPS Help
By: SYS64738 to echicken on Sun Aug 18 2024 03:12:45

Sorry for the delayed response. Yes, the file name is spelled "letsyncrypt.ini". Below is how my timed event is set up:

And if you do 'jsexec -A -L7 letsynccrypt.js --force' what output do you see?

echicken
electronic chicken bbs - bbs.electronicchicken.com
---
� Synchronet � electronic chicken bbs - bbs.electronicchicken.com
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

Re: HTTPS Help
By: SYS64738 to echicken on Sun Aug 18 2024 03:12:45

And if you do 'jsexec -A -L7 letsynccrypt.js --force' what output do you see?

This is the output:

JSexec v3.19b-Win32 master/a2a9dc027 - Execute Synchronet JavaScript Module Compiled Jan 2 2022 16:02:08 with MSC 1928

Loading configuration files from C:\sbbs\ctrl
JavaScript-C 1.8.5 2011-03-31
JavaScript: Creating runtime: 8388608 bytes

Reading script from c:\sbbs\exec\letsyncrypt.js
c:\sbbs\exec\letsyncrypt.js compiled in 0.00 seconds
!JavaScript c:\sbbs\exec\letsyncrypt.js line 273: Error: Error -44 calling cryptAddPrivateKey()

!JavaScript c:\sbbs\exec\letsyncrypt.js line 273: Error: Error -44 calling cryptAddPrivateKey()

c:\sbbs\exec\letsyncrypt.js executed in 1.21 seconds
!Module (letsyncrypt.js) set exit_code: 1
!Module (letsyncrypt.js) set exit_code: 1

JavaScript: Destroying context
JavaScript: Destroying runtime

Returning error code: 1

I looked up line 273 and it says "ks.add_private_key(rsa, syspass);"

So, I am guessing that the key needs to be located somewhere and it is not...?

---
￭ Synchronet ￭ GeoSync - geo.synchro.net
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

Re: HTTPS Help
By: SYS64738 to echicken on Mon Aug 19 2024 01:09 am

I looked up line 273 and it says "ks.add_private_key(rsa, syspass);"

So, I am guessing that the key needs to be located somewhere and it is not...?

No, more likely, you changed your system password and need to regenerate the private key. But I would expect there to be SSH server errors too:
https://wiki.synchro.net/faq:tcpip#ssh_session_key
--
digital man (rob)

Rush quote #49:
Some will sell their dreams for small desires or lose the race to rats
Norco, CA WX: 70.2�F, 73.0% humidity, 0 mph NW wind, 0.00 inches rain/24hrs
--- SBBSecho 3.20-Linux
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

Re: HTTPS Help
By: SYS64738 to echicken on Mon Aug 19 2024 01:09 am

No, more likely, you changed your system password and need to regenerate the private key. But I would expect there to be SSH server errors too: https://wiki.synchro.net/faq:tcpip#ssh_session_key
--
digital man (rob)

Ok. I moved the old cryptlib.key and ssl.cert files, restarted the BBS, and it generated new cryptlib.key and ssl.cert files.

Still getting the same error or should i give it some time?

Reading script from c:\sbbs\exec\letsyncrypt.js
c:\sbbs\exec\letsyncrypt.js compiled in 0.00 seconds
!JavaScript c:\sbbs\exec\letsyncrypt.js line 273: Error: Error -44 calling cryptAddPrivateKey()

!JavaScript c:\sbbs\exec\letsyncrypt.js line 273: Error: Error -44 calling cryptAddPrivateKey()

c:\sbbs\exec\letsyncrypt.js executed in 1.50 seconds
!Module (letsyncrypt.js) set exit_code: 1
!Module (letsyncrypt.js) set exit_code: 1

JavaScript: Destroying context
JavaScript: Destroying runtime

Returning error code: 1

---
￭ Synchronet ￭ GeoSync - geo.synchro.net
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

Re: HTTPS Help
By: SYS64738 to Digital Man on Mon Aug 19 2024 01:40 am

Re: HTTPS Help
By: SYS64738 to echicken on Mon Aug 19 2024 01:09 am

No, more likely, you changed your system password and need to regenerate the private key. But I would expect there to be SSH server errors too: https://wiki.synchro.net/faq:tcpip#ssh_session_key
--
digital man (rob)

Ok. I moved the old cryptlib.key and ssl.cert files, restarted the BBS, and it generated new cryptlib.key and ssl.cert files.

Still getting the same error or should i give it some time?

Reading script from c:\sbbs\exec\letsyncrypt.js
c:\sbbs\exec\letsyncrypt.js compiled in 0.00 seconds
!JavaScript c:\sbbs\exec\letsyncrypt.js line 273: Error: Error -44 calling cryptAddPrivateKey()

!JavaScript c:\sbbs\exec\letsyncrypt.js line 273: Error: Error -44 calling cryptAddPrivateKey()

I don't think "giving it time" is going to fix anything. Are you getting any SSH-related errors reported by your terminal server?
--
digital man (rob)

Sling Blade quote #26:
Karl: kaiser blade, ax handle with long blade on it shaped kinda like a banana. Norco, CA WX: 88.8�F, 36.0% humidity, 5 mph W wind, 0.00 inches rain/24hrs
--- SBBSecho 3.20-Linux
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

I don't think "giving it time" is going to fix anything. Are you getting any SSH-related errors reported by your terminal server?
--
digital man (rob)

No, sir. Also, when the timed event runs, I see no errors:

8/19 11:58:22p BBS Events Semaphore signaled for Timed Event: SYNCRYPT
8/19 11:58:22p SYNCRYPT Running timed event: SYNCRYPT
8/19 11:58:22p SYNCRYPT Timed event: SYNCRYPT returned 0

---
￭ Synchronet ￭ GeoSync - geo.synchro.net
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

I don't think "giving it time" is going to fix anything. Are you getting any SSH-related errors reported by your terminal server?
--
digital man (rob)

I just noticed this error...?

8/19 07:09:27p 2608 SSH WARNING 'Client sent malformed identifier string 'SSH-2.0-Go'' (-32) setting session active from bbs_thread

---
￭ Synchronet ￭ GeoSync - geo.synchro.net
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

Re: HTTPS Help
By: SYS64738 to Digital Man on Tue Aug 20 2024 00:14:35

8/19 07:09:27p 2608 SSH WARNING 'Client sent malformed identifier string 'SSH-2.0-Go'' (-32) setting session active from bbs_thread

This is likely some bot connecting (using the Golang SSH package), and not relevant to your problem. (Weird though; there's nothing malformed about that identifier.)

echicken
electronic chicken bbs - bbs.electronicchicken.com
---
� Synchronet � electronic chicken bbs - bbs.electronicchicken.com
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

Re: HTTPS Help
By: SYS64738 to Digital Man on Tue Aug 20 2024 12:14 am

I don't think "giving it time" is going to fix anything. Are you getting any SSH-related errors reported by your terminal server?
--
digital man (rob)

I just noticed this error...?

8/19 07:09:27p 2608 SSH WARNING 'Client sent malformed identifier string 'SSH-2.0-Go'' (-32) setting session active from bbs_thread

That's kind of normal and not an issue. The SSH-related errors I was referring to would be present during terminal server startup.
--
digital man (rob)

Synchronet/BBS Terminology Definition #68:
SBBS = Synchronet Bulletin Board System
Norco, CA WX: 74.7�F, 42.0% humidity, 0 mph NE wind, 0.00 inches rain/24hrs
--- SBBSecho 3.20-Linux
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

That's kind of normal and not an issue. The SSH-related errors I was referring to would be present during terminal server startup.
--
digital man (rob)

No errors at startup. Who knows? I'll keep screwing around with it until something gives.

---
￭ Synchronet ￭ GeoSync - geo.synchro.net
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

No, more likely, you changed your system password and need to regenerate the private key. But I would expect there to be SSH server errors too: https://wiki.synchro.net/faq:tcpip#ssh_session_key
--
digital man (rob)

In researching I ran across the same issue(https://gitlab.synchro.net/main/sbbs/-/issues/237) being experienced by someone else and this is what Deuce had to say about it:

That error indicates that the script could not read your private key from letsyncrypt.key, but that there's already a private key in that file. The most likely causes of this issue are that the hostname of the AJAX service has changed (ie: the Host line in the State section of your INI file), or your system password has changed.
If you recently changed your system password, it's possible that my change to scfg which updated private keys when the system password is changed missed that file. If that's the case, keeping your private key will require some effort on your part... basically, you'll need to change your system password back to the old one using the current scfg, then update scfg and change it to the new one.
I'll update this ticket when/if I make that commit.

Yep, that's the problem. Pushing the commit right away. Be sure to set your syspass back first, update, then change your syspass to what you want.
Sorry for the inconvenience.

If you recall, within the past couple of weeks, I did change my system password. However, I don't recall what the old system password was. Do you think this could be the issue?

---
￭ Synchronet ￭ GeoSync - geo.synchro.net
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

This is likely some bot connecting (using the Golang SSH package), and not relevant to your problem. (Weird though; there's nothing malformed about that identifier.)

echicken

In researching I ran across the same issue(https://gitlab.synchro.net/main/sbbs/-/issues/237) being experienced by someone else and this is what Deuce had to say about it:

That error indicates that the script could not read your private key from letsyncrypt.key, but that there's already a private key in that file. The most likely causes of this issue are that the hostname of the AJAX service has changed (ie: the Host line in the State section of your INI file), or your system password has changed.
If you recently changed your system password, it's possible that my change to scfg which updated private keys when the system password is changed missed that file. If that's the case, keeping your private key will require some effort on your part... basically, you'll need to change your system password back to the old one using the current scfg, then update scfg and change it to the new one.
I'll update this ticket when/if I make that commit.

Yep, that's the problem. Pushing the commit right away. Be sure to set your syspass back first, update, then change your syspass to what you want.
Sorry for the inconvenience.

Within the past couple of weeks, I did change my system password. However, I don't recall what the old system password was. Do you think this could be the issue? I tried reaching out to Deuce, but I haven't heard back.

---
￭ Synchronet ￭ GeoSync - geo.synchro.net
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

Within the past couple of weeks, I did change my system password. However, I don't recall what the old system password was. Do you think this could be the issue? I tried reaching out to Deuce, but I haven't heard back.

You may have already tried this, but the best way to reach deuce is via the synchronet IRC channel.


* SLMR 2.1a * Pass the tequila, Manuel...
---
� Synchronet � CAPCITY2 * capcity2.synchro.net * Telnet/SSH:2022/Rlogin/HTTP
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

You may have already tried this, but the best way to reach deuce is via the synchronet IRC channel.

Yes, I did. However, I do appreciate the tip.

---
￭ Synchronet ￭ GeoSync - geo.synchro.net
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

Re: HTTPS Help
By: SYS64738 to echicken on Mon Aug 26 2024 00:20:38

In researching I ran across the same issue(https://gitlab.synchro.net/main/sbbs/-/issues/237) being experienced

Within the past couple of weeks, I did change my system password. However, I don't recall what the old system password was. Do you think this could be the issue? I tried reaching out to Deuce, but I haven't heard back.

I'd really have to dig through letsyncrypt.js to say. What happens if you run it with '--new-key', '--force', '--revoke', or combinations of these options?

If that doesn't help, how often do you change your system configuration? You may have several 'main.?.ini' files in your ctrl directory, which are backups of 'main.ini'. The system password is stored in this file. Perhaps one of these files is old enough to contain your previous syspass.

echicken
electronic chicken bbs - bbs.electronicchicken.com
---
� Synchronet � electronic chicken bbs - bbs.electronicchicken.com
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

I'd really have to dig through letsyncrypt.js to say. What happens if you run it with '--new-key', '--force', '--revoke', or combinations of these options?

This I tried but it didn't produce any favorable results.

If that doesn't help, how often do you change your system configuration? You may have several 'main.?.ini' files in your ctrl directory, which are backups of 'main.ini'. The system password is stored in this file. Perhaps one of these files is old enough to contain your previous syspass.

I don't change the system often. It just so happens to be that I did make a change recently before I got interested in the web certificate.

Thanks for the advice. I'll check this out.

---
￭ Synchronet ￭ GeoSync - geo.synchro.net
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

I'd really have to dig through letsyncrypt.js to say. What happens if you run it with '--new-key', '--force', '--revoke', or combinations of these options?

If that doesn't help, how often do you change your system configuration? You may have several 'main.?.ini' files in your ctrl directory, which are backups of 'main.ini'. The system password is stored in this file. Perhaps one of these files is old enough to contain your previous syspass.

Ok. It doesn't appear that the syspass was the issue because when I changed it back to the old password, it started giving me errors about the syspass which had not happened before. So, I changed it back to my current syspass and no more errors of that nature.

I ran these letsyncrypt commands and received errors each time. I have no idea what these errors mean, but I am still digging.

c:\sbbs\exec>jsexec -A -L7 letsyncrypt.js --force

JSexec v3.19b-Win32 master/a2a9dc027 - Execute Synchronet JavaScript Module Compiled Jan 2 2022 16:02:08 with MSC 1928

Loading configuration files from C:\sbbs\ctrl
JavaScript-C 1.8.5 2011-03-31
JavaScript: Creating runtime: 8388608 bytes

Reading script from c:\sbbs\exec\letsyncrypt.js
c:\sbbs\exec\letsyncrypt.js compiled in 0.00 seconds
Getting directory.
Calling newOrder.
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
{
"type": "urn:ietf:params:acme:error:malformed",
"detail": "JWS verification error",
"status": 400
}
!JavaScript C:\sbbs\exec\load\acmev2.js line 139: Error: newOrder responded with 400 not 201
!JavaScript C:\sbbs\exec\load\acmev2.js line 139: Error: newOrder responded with 400 not 201
c:\sbbs\exec\letsyncrypt.js executed in 2.22 seconds
!Module (letsyncrypt.js) set exit_code: 1
!Module (letsyncrypt.js) set exit_code: 1

JavaScript: Destroying context
JavaScript: Destroying runtime

Returning error code: 1

c:\sbbs\exec>jsexec -A -L7 letsyncrypt.js --new-key

JSexec v3.19b-Win32 master/a2a9dc027 - Execute Synchronet JavaScript Module Compiled Jan 2 2022 16:02:08 with MSC 1928

Loading configuration files from C:\sbbs\ctrl
JavaScript-C 1.8.5 2011-03-31
JavaScript: Creating runtime: 8388608 bytes

Reading script from c:\sbbs\exec\letsyncrypt.js
c:\sbbs\exec\letsyncrypt.js compiled in 0.00 seconds
Getting directory.
Calling keyChange.
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
{
"type": "urn:ietf:params:acme:error:malformed",
"detail": "JWS verification error",
"status": 400
}
!JavaScript C:\sbbs\exec\load\acmev2.js line 307: Error: keyChange did not return 200
!JavaScript C:\sbbs\exec\load\acmev2.js line 307: Error: keyChange did not return 200
c:\sbbs\exec\letsyncrypt.js executed in 3.23 seconds
!Module (letsyncrypt.js) set exit_code: 1
!Module (letsyncrypt.js) set exit_code: 1

JavaScript: Destroying context
JavaScript: Destroying runtime

Returning error code: 1

c:\sbbs\exec>jsexec -A -L7 letsyncrypt.js --revoke

JSexec v3.19b-Win32 master/a2a9dc027 - Execute Synchronet JavaScript Module Compiled Jan 2 2022 16:02:08 with MSC 1928

Loading configuration files from C:\sbbs\ctrl
JavaScript-C 1.8.5 2011-03-31
JavaScript: Creating runtime: 8388608 bytes

Reading script from c:\sbbs\exec\letsyncrypt.js
c:\sbbs\exec\letsyncrypt.js compiled in 0.00 seconds
Getting directory.
Calling revokeCert.
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
{
"type": "urn:ietf:params:acme:error:malformed",
"detail": "JWS verification error",
"status": 400
}
!JavaScript C:\sbbs\exec\load\acmev2.js line 360: Error: revokeCert did not return 200
!JavaScript C:\sbbs\exec\load\acmev2.js line 360: Error: revokeCert did not return 200
c:\sbbs\exec\letsyncrypt.js executed in 1.70 seconds
!Module (letsyncrypt.js) set exit_code: 1
!Module (letsyncrypt.js) set exit_code: 1

JavaScript: Destroying context
JavaScript: Destroying runtime

Returning error code: 1

---
￭ Synchronet ￭ GeoSync - geo.synchro.net
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

Re: HTTPS Help
By: SYS64738 to echicken on Tue Sep 03 2024 00:52:03

changed it back to the old password, it started giving me errors about the syspass which had not happened before. So, I changed it back to my

What errors were those?

"type": "urn:ietf:params:acme:error:malformed", "detail": "JWS verification error",
"status": 400

You get this same error for every request, and it indicates some issue with an authentication token.

I don't know if this will help, make things worse, or do nothing, but you can look in letsyncrypt.ini for a [key_id] section, comment the entire thing out, and try running again. (Put a semicolon at the start of a line to comment it out.) Seems like this will attempt to create a new account. It may just complain that your account already exists, or maybe it will ignore any previous keys / auth stuff and let you start over. Bit of a shot in the dark.

echicken
electronic chicken bbs - bbs.electronicchicken.com
---
� Synchronet � electronic chicken bbs - bbs.electronicchicken.com
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)