Directadmin Error with LetsEncrypt request

Help
41

@Tautuxs take Osiris advice over mine.

2 Likes
42

I am not sure but maybe Let's Encrypt was added manually because before me there was another guy that was managing all of this but he left the job and there is no way to contact him because he is ignoring all messages and calls, he said that this is a waste of time for him, he can make more money by doing other things

43

As implied earlier, I don't have much (to none) experience with DirectAdmin, but how would one add Let's Encrypt support to DirectAdmin offered by Hostinger?

Also, as asked before (I don't think I've seen the answer yet), can you edit the DNS zone of your domain in your DirectAdmin? I.e., add/remove TXT records manually?

4 Likes
45

I am still waiting, because there are still 100 people browsing the site

46

Waiting on what?

2 Likes
47

Don't want the website to stop working or something happen to it while people are purchasing something from it

48

Then I would suggest you don't wait?

3 Likes
49

What if the website crashes?

50

I have no idea what you're planning to do which might lead to a crash of the website? Adding and removing just a TXT record on your DNS zone (if that's what you're meaning with the whole waiting/crashing stuff), then no, adding a TXT record should not have any influence on your website.

Also, you have until Apr 8 23:59:59 2024 GMT to figure this all out as that's the expiry date of your current certificate.

3 Likes
51

I know, that's the PositiveSSL certificate. When i enabled it, some of things stoped working

52

Look to me like the certificate was issued by

Issuer Common Name 	Sectigo RSA Domain Validation Secure Server CA
Issuer Organization 	Sectigo Limited
2 Likes
53

Actually, the picture doesn't scroll down.
Is there more to that DNS provider list?

2 Likes
54

Nope. That's all of them

55

That's from the ssls.com website

image
image1187×281 22.1 KB

56

That can't be right.
That list looks very alphabetical.
Where are the other letters?

2 Likes
57

My mistake, you want to see all of them?

1 Like
58

Here is a list of issued certificates crt.sh | omedita.lt
and I believe this is the certificate actually being served crt.sh | 9094486156

$ openssl s_client -showcerts -servername omedita.lt -connect omedita.lt:443 < /dev/null
CONNECTED(00000003)
depth=0 CN = omedita.lt
verify error:num=20:unable to get local issuer certificate
verify return:1
depth=0 CN = omedita.lt
verify error:num=21:unable to verify the first certificate
verify return:1
depth=0 CN = omedita.lt
verify return:1
---
Certificate chain
 0 s:CN = omedita.lt
   i:C = GB, ST = Greater Manchester, L = Salford, O = Sectigo Limited, CN = Sectigo RSA Domain Validation Secure Server CA
   a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256
   v:NotBefore: Apr  8 00:00:00 2023 GMT; NotAfter: Apr  8 23:59:59 2024 GMT
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
 1 s:C = US, O = Let's Encrypt, CN = R3
   i:C = US, O = Internet Security Research Group, CN = ISRG Root X1
   a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256
   v:NotBefore: Sep  4 00:00:00 2020 GMT; NotAfter: Sep 15 16:00:00 2025 GMT
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
---
Server certificate
subject=CN = omedita.lt
issuer=C = GB, ST = Greater Manchester, L = Salford, O = Sectigo Limited, CN = Sectigo RSA Domain Validation Secure Server CA
---
No client certificate CA names sent
Peer signing digest: SHA256
Peer signature type: RSA-PSS
Server Temp Key: X25519, 253 bits
---
SSL handshake has read 3387 bytes and written 392 bytes
Verification error: unable to verify the first certificate
---
New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384
Server public key is 2048 bit
Secure Renegotiation IS NOT supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
Early data was not sent
Verify return code: 21 (unable to verify the first certificate)
---
DONE
1 Like
59

Not all, just "Hostinger" [if that exists]

2 Likes
60

There is one called Hosting.de

61

Then you need to ask Hostinger which entry is the one you should be using.

2 Likes