Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
My domain is: lmcloud.hopto.org
I ran this command: sudo /etc/letsencrypt/renew.sh
It produced this output:
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Processing /etc/letsencrypt/renewal/lmcloud.hopto.org.conf
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Certificate is due for renewal, auto-renewing...
Plugins selected: Authenticator webroot, Installer None
Renewing an existing certificate for lmcloud.hopto.org
Performing the following challenges:
http-01 challenge for lmcloud.hopto.org
Waiting for verification...
Challenge failed for domain lmcloud.hopto.org
http-01 challenge for lmcloud.hopto.org
Certbot failed to authenticate some domains (authenticator: webroot). The Certificate Authority reported these problems:
Domain: lmcloud.hopto.org
Type: unauthorized
Detail: 79.116.0.44: Invalid response from https://lmcloud.hopto.org/.well-known/acme-challenge/nVtt632ZS9g--3xzwBp_S8vN0HscBO_HYuU_b_EwoAU: 403
Hint: The Certificate Authority failed to download the temporary challenge files created by Certbot. Ensure that the listed domains serve their content from the provided --webroot-path/-w and that files created there can be downloaded from the internet.
My web server is (include version): Server version: Apache/2.4.38 (Raspbian)
The operating system my web server runs on is (include version): Raspbian GNU/Linux 10
My hosting provider, if applicable, is:
I can login to a root shell on my machine (yes or no, or I don't know): yes
I'm using a control panel to manage my site (no, or provide the name and version of the control panel):
The version of my client is (e.g. output of certbot --version
or certbot-auto --version
if you're using Certbot): certbot 1.27.0
===================================================
Hi, this is my first post and I've become quite desperate while trying to renew my certificate. First please note that I'm fairly new to SSL and website hosting, but I think that the issue is that the acme-challenge folder is not accesible. I'm posting down below some files that I think may be helpful.
apache *.conf file
NameVirtualHost *:80
<VirtualHost *:80>
ServerName lmcloud.hopto.org
Redirect permanent / https://lmcloud.hopto.org/
# SSL Configuration
Alias /.well-known/acme-challenge/ /var/www/owncloud/.well-known/acme-challenge/
<Directory "/var/www/owncloud/.well-known/acme-challenge/">
#Options Indexes FollowSymLinks Includes ExecCGI
Options Indexes
Require all granted
AllowOverride all
ForceType text/plain
RedirectMatch 404 "^(?!/\.well-known/acme-challenge/[\w-]{43}$)"
</Directory>
</VirtualHost>
<VirtualHost *:443>
# The ServerName directive sets the request scheme, hostname and port that
# the server uses to identify itself. This is used when creating
# redirection URLs. In the context of virtual hosts, the ServerName
# specifies what hostname must appear in the request's Host: header to
# match this virtual host. For the default virtual host (this file) this
# value is not decisive as it is used as a last resort host regardless.
# However, you must set it for any further virtual host explicitly.
#ServerName www.example.com
ServerAdmin lm_olano@hotmail.com
ServerName lmcloud.hopto.org
ServerAlias www.lmcloud.hopto.org
DocumentRoot /var/www/owncloud
# SSL Configuration
Alias /.well-known/acme-challenge/ /var/www/owncloud/.well-known/acme-challenge/
<Directory "/var/www/owncloud/.well-known/acme-challenge/">
#Options Indexes FollowSymLinks Includes ExecCGI
Options Indexes
Require all granted
AllowOverride all
ForceType text/plain
RedirectMatch 404 "^(?!/\.well-known/acme-challenge/[\w-]{43}$)"
</Directory>
Include /etc/apache2/ssl_rules/ssl_lmcloud.hopto.org
# Available loglevels: trace8, ..., trace1, debug, info, notice, warn,
# error, crit, alert, emerg.
# It is also possible to configure the loglevel for particular
# modules, e.g.
#LogLevel info ssl:warn
ErrorLog ${APACHE_LOG_DIR}/error.log
CustomLog ${APACHE_LOG_DIR}/access.log combined
# For most configuration files from conf-available/, which are
# enabled or disabled at a global level, it is possible to
# include a line for only one particular virtual host. For example the
# following line enables the CGI configuration for this host only
# after it has been globally disabled with "a2disconf".
#Include conf-available/serve-cgi-bin.conf
Alias /owncloud "/var/www/owncloud/"
<Directory /var/www/owncloud/>
Options +FollowSymlinks
AllowOverride All
<IfModule mod_dav.c>
Dav off
</IfModule>
SetEnv HOME /var/www/owncloud
SetEnv HTTP_HOME /var/www/owncloud
</Directory>
</VirtualHost>
Any help would be greatly appreciated. Thanks in advance!
Luis