Could Augeas have some kind of memory leak due to some kind of weird Apache configuration fluke/weird syntax/whatever? And how would one prove or disprove such a thing? 
5 Likes
The problem is, this website is running off a .jar file and not the typical website that has all the files in /var/www/html... So not sure what I would put for the -w path..
Apache isn't running when I run certbot (otherwise certbot can't grab port 80). But in my httpd.conf, I have this:
Require all granted Include /etc/httpd/ipblacklist.confwhich uses the ipblacklist.conf file which has over 10K lines, each one reading:
Require ip not XX.XXX.XXX.XXX
Would that make certbot use extra memory?
1 Like
Ha! That was it. I commented out ipblacklist.conf and it renewed!
Thank you for your time!
3 Likes
FYI this is only an issue when using the --standalone authenticator.
The --apache plugin is designed to allow Certbot to renew your certificates without stopping Apache. It doesn't need 80 free. When you stop Apache, Certbot starts it anyway.
6 Likes
Thanks. So does that mean I can just do: certbot renew, next time without stopping Apache first?
1 Like
Personally, I would put such IP blocklists into my firewall, not Apache 
7 Likes
Yes, that is correct.
5 Likes
This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.