Hi,
I had a server at home and was using nginx-proxy-manager and docker containers with wordpress and it was kompromised and I have lost my privatekey. I have set up a new server with UbuntuCore. I want to have a new lets encrypt cert for that server with my domain reachme.se, but cant when its already taken. Therefore I need help revoking. Can you help me? Is it possible to proof I own the domian with email verification? I have the cert.pem file but have lost my privatekey.
My domain is:reachme.se
My web server is (include version): nginx-proxy-manager
The operating system my web server runs on is (include version): ubuntu Core
That sounds like an issue configuring your server. I think this is something that nginx-proxy-manager makes complicated and hard to diagnose, so I don't know if someone here will be able to give you much help.
That's a non-sequitur. Revoking a certificate is just additionally having Let's Encrypt tell web browsers (if they ask, which many don't) that the certificate is revoked. It has nothing to do with configuring a certificate for your site to use.
As long as the private key wasn't taken by someone hostile (that is, you've deleted it, rather than some attacker getting a copy), then revoking isn't necessary or helpful. You just need to get another certificate is all.
Taken? How do you mean? Let's Encrypt does not "block" issuance for a certain domain when a previous certificate has already been issued: you can have multiple certificates for the same domain. Thus, it stands to reason something else must be a problem.
Also, revoking does not help with any "blockade" of any sorts.
Anyway, to address your question: if you've lost the private key of a previously issued certificate, you can either revoke it using the account that initially issued that certificate or if that account also is not available any longer due to that private key being missing, you could get a new account using the ACME client of your choice, re-issue a certificate with all the hostnames of the previous certificate in it and use that new account, which now has proven ownership of the domain(s), to revoke the previous cert.
One other bit is that your domain is currently proxied at Cloudflare.
And, the active cert being used was issued by Google. It looks like Cloudflare also obtained a Let's Encrypt cert on your behalf. It does this as a backup cert sometimes but it is not being actively used.
So, which cert, exactly, do you think you need to revoke?
Hello, thank you for your help. I was able to log in to cloudflare an i did revoke my old cert there. So I managed to make a new and it is now active on my server. Thank you anyway.
Hello, thank you for your help. I was able to log in to cloudflare an i did revoke my old cert there. So I managed to make a new and it is now active on my server. Thank you anyway.
I mean I vanlig into cloudflare and I have reachme.se active. And I did revoke my origin server and created and downloaded cert.pem and privatekey. And when I go to my domain. I come to my WordPress site, when I have the server online. In my eyes it seems okey but.I mean is it okej? I am wondering Google trust services? and 29 oktober does not sound right. I dont know.
If that is the Cloudflare Origin CA cert then yes I think you are fine.
Cloudflare gets certs for their CDN Edge which is part of "proxying" your domain with them. That is what people see and Cloudflare will renew it automatically when needed.
