Still having let's encrypt problems

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is:
ingber.com

I ran this command:
certbot

It produced this output:
Hint: The Certificate Authority failed to verify the temporary Apache configuration changes made by Certbot. Ensure that the listed domains point to this Apache server and that it is accessible from the internet.

My web server is (include version):
www.ingber.com

The operating system my web server runs on is (include version):
?

My hosting provider, if applicable, is:
Linode

I can login to a root shell on my machine (yes or no, or I don't know):
Yes

I'm using a control panel to manage my site (no, or provide the name and version of the control panel):
No

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot):
certbot 3.1.0

What was the rest of the output?

No, it isn't. Please answer correctly.

You can log into a root shell, but don't know what OS you're running?

There's no obvious reason for this to fail, but you've given us almost no information to work with.

I note that www.ingber.com is serving a certificate for blog.ingber.com that expired over two months ago.

1 Like

Hi @lingber,

Here is what I see using curl

$ curl -Ii http://www.ingber.com/.well-known/acme-challenge/sometestfile -A "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)"
HTTP/1.1 302 Found
Date: Tue, 04 Feb 2025 19:04:09 GMT
Server: Apache/2.4.58 (Ubuntu)
Location: https://www.ingber.com/.well-known/acme-challenge/sometestfile
Content-Type: text/html; charset=iso-8859-1

And following the redirection

$ curl -k -Ii https://www.ingber.com/.well-known/acme-challenge/sometestfile -A "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)"
HTTP/1.1 404 Not Found
Date: Tue, 04 Feb 2025 19:04:12 GMT
Server: Apache/2.4.58 (Ubuntu)
Content-Type: text/html; charset=iso-8859-1

I would guess the the web server is Apache/2.4.58
and the Operating System is Ubuntu

These 7 domain names are severing this certificate crt.sh | 14322877690, yet from this list of issued certificates crt.sh | ingber.com there are other subdomains with newer issued certificates

  1. https://decoder.link/sslchecker/ingber.com/443
  2. https://decoder.link/sslchecker/www.ingber.com/443
  3. https://decoder.link/sslchecker/blog.ingber.com/443
  4. https://decoder.link/sslchecker/lin.ingber.com/443
  5. https://decoder.link/sslchecker/lester.ingber.com/443
  6. https://decoder.link/sslchecker/default.ingber.com/443
  7. https://decoder.link/sslchecker/lin6.ingber.com/443

Please show the output of both of these command sudo certbot certificates and sudo apachectl -t -D DUMP_VHOSTS.