Debian 8 errors with 'sudo certbot --apache'

Help
1

Hi,

I am getting two errors with ‘sudo certbot --apache’. It has created certs but has failed and is not catching Apache configuration errors properly.

yyyyyy@yyyyyyy:/etc/apache2/sites-enabled$ sudo certbot --apache
Saving debug log to /var/log/letsencrypt/letsencrypt.log

Which names would you like to activate HTTPS for?
-------------------------------------------------------------------------------
1: yyyyyy.org
2: www.yyyyyyy.org
-------------------------------------------------------------------------------
Select the appropriate numbers separated by commas and/or spaces, or leave input
blank to select all options shown (Enter 'c' to cancel):1,2
Starting new HTTPS connection (1): acme-v01.api.letsencrypt.org
Obtaining a new certificate
Performing the following challenges:
tls-sni-01 challenge for yyyyyy.org
tls-sni-01 challenge for www.yyyyyy.org
Enabled Apache socache_shmcb module
Enabled Apache ssl module
/usr/lib/python2.7/dist-packages/OpenSSL/rand.py:58: UserWarning: implicit cast from 'char *' to a different pointer type: will be forbidden in the future (check that the types are as you expect; use an explicit ffi.cast() if they are correct)
  result_code = _lib.RAND_bytes(result_buffer, num_bytes)
Waiting for verification...
Cleaning up challenges
Generating key (2048 bits): /etc/letsencrypt/keys/0000_key-certbot.pem
Creating CSR: /etc/letsencrypt/csr/0000_csr-certbot.pem
Created an SSL vhost at /etc/apache2/sites-enabled/yyyyyy.org-le-ssl.conf
Enabled Apache socache_shmcb module
Enabled Apache ssl module
Error in checking parameter list: AH00526: Syntax error on line 31 of /etc/apache2/sites-enabled/yyyyyy.org-le-ssl.conf:
SSLCertificateFile: file '/etc/apache2/insert_cert_file_path' does not exist or is empty

Apache is unable to check whether or not the module is loaded because Apache is misconfigured.

IMPORTANT NOTES:
 - Unable to install the certificate
 - Congratulations! Your certificate and chain have been saved at
   /etc/letsencrypt/live/yyyyyy.org/fullchain.pem. Your cert will
   expire on 2017-12-30. To obtain a new or tweaked version of this
   certificate in the future, simply run certbot again with the
   "certonly" option. To non-interactively renew *all* of your
   certificates, run "certbot renew"

The following seems to be a standard error appearing every time on my system.

/usr/lib/python2.7/dist-packages/OpenSSL/rand.py:58: UserWarning: implicit cast from 'char *' to a different pointer type: will be forbidden in the future (check that the types are as you expect; use an explicit ffi.cast() if they are correct)
  result_code = _lib.RAND_bytes(result_buffer, num_bytes)

This seems to be something to do with the SSL Module possibly

Error in checking parameter list: AH00526: Syntax error on line 31 of /etc/apache2/sites-enabled/yyyyyy.org-le-ssl.conf:
SSLCertificateFile: file '/etc/apache2/insert_cert_file_path' does not exist or is empty
2

Works fine if SSL is already enabled with

sudo a2enmod ssl

The first error is still there though

/usr/lib/python2.7/dist-packages/OpenSSL/rand.py:58: UserWarning: implicit cast from 'char *' to a different pointer type: will be forbidden in the future (check that the types are as you expect; use an explicit ffi.cast() if they are correct)
  result_code = _lib.RAND_bytes(result_buffer, num_bytes)
3

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.