Certbot-auto has insecure permissions!

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is: http://lawcountability.com/

I have installed nginx on ubuntu 16 where i have project. I have added SSL using letsencrypt. But its working fine. My client got received mail from letsencrypt about insecure installation. Below is my error log.

/opt/certbot/certbot-auto has insecure permissions!
To learn how to fix them, visit Certbot-auto deployment best practices
Command “/opt/eff.org/certbot/venv/bin/python -u -c “import setuptools, tokenize;file=’/tmp/pip-4gKpIw-build/setup.py’;exec(compile(getattr(tokenize, ‘open’, open)(file).read().replace(’\r\n’, ‘\n’), file, ‘exec’))” install --record /tmp/pip-Jd6uDW-record/install-record.txt --single-version-externally-managed --compile --install-headers /opt/eff.org/certbot/venv/include/site/python2.7/pip” failed with error code 1 in /tmp/pip-4gKpIw-build/
Traceback (most recent call last):
File “/tmp/tmp.ABgDXQjUUo/pipstrap.py”, line 177, in
File “/tmp/tmp.ABgDXQjUUo/pipstrap.py”, line 164, in main
File “/usr/local/lib/python2.7/subprocess.py”, line 219, in check_output
raise CalledProcessError(retcode, cmd, output=output)
subprocess.CalledProcessError: Command ‘[’/opt/eff.org/certbot/venv/bin/python’, ‘-m’, ‘pip’, ‘install’, ‘–no-index’, ‘–no-deps’, ‘-U’, ‘–no-cache-dir’, ‘/tmp/pipstrap-3VBO_R/pip-9.0.1.tar.gz’, ‘/tmp/pipstrap-3VBO_R/setuptools-40.6.3.zip’, ‘/tmp/pipstrap-3VBO_R/wheel-0.29.0.tar.gz’]’ returned non-zero exit status 1

What do you get when you run ls - al /opt/certbot/certbot-auto?

Ideally I believe it should be 750 (755?) I’d have to check when I can get on my laptop & get on my server. It should not be writable by anyone but the owner -rwxr-xr-x = 755

I have checked with my server. But there is no file. When i hit ls - al /opt/certbot/certbot-auto, then it thrown error like below

ls: cannot access ‘-’: No such file or directory

Ach. Autocorrect on my phone put a space after the - .

ls -al /opt/certbot/certbot-auto

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.