How long I got block from invalid authorization?


#1

I tried multiple time configure the nginx and then I got block from multiple authentication
I have chmod 777 -R /home already

My IP address also bind to A Record already. At least customer claims that
What is wrong with my configuration?

Here is my /etc/nginx/site-enable/cmoc

upstream app {
   server localhost:8000;
}

server {
   listen 80;

   root /home/web/cmoc-web;

   server_name cmoc.beenets.com;

   location / {
           proxy_pass_request_headers on;
           proxy_set_header           Host $host;
 	   proxy_set_header           X-Forwarded-Proto $scheme;
           proxy_pass                 http://app;
   }

   location ~ /.well-known{
	   allow all;
   }

}

/etc/nginx/nginx.conf

user www-data;
worker_processes 4;
pid /run/nginx.pid;

events {
	worker_connections 768;
}

http {
	sendfile on;
	tcp_nopush on;
	tcp_nodelay on;
	keepalive_timeout 65;
	types_hash_max_size 2048;

	include /etc/nginx/mime.types;
	default_type application/octet-stream;

	access_log /var/log/nginx/access.log;
	error_log /var/log/nginx/error.log;

	gzip on;
	gzip_disable "msie6";

	include /etc/nginx/conf.d/*.conf;
	include /etc/nginx/sites-enabled/*;
}
certbot-auto certonly -a webroot --webroot-path=/home/web/cmoc-web -d cmoc.beenets.com
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Obtaining a new certificate
An unexpected error occurred:
There were too many requests of a given type :: Error creating new authz :: Too many invalid authorizations recently.
Please see the logfiles in /var/log/letsencrypt for more details.

#2

I guess that you should wait a hour… From https://letsencrypt.org/docs/rate-limits/:

We recently (April 2017) introduced a Failed Validation limit of 5 failures per account, per hostname, per hour. This limit will be higher on staging so you can use staging to debug connectivity problems.

:confused:

HIH!

Andreyev


#3

Hi Sarit,

The rate limit documentation page says:

We recently (April 2017) introduced a Failed Validation limit of 5 failures per account, per hostname, per hour. This limit will be higher on staging so you can use staging to debug connectivity problems.

So the answer is 1 hour. You should also try using the staging environment while you iron out your issuance trouble.


#4

Thank you andreyev and cpu. I have been using LE for a couple of months.
This is up2date information for me.


#5

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.