'Update your client software to continue using Let's Encrypt' email

You sent an email to one of my email addresses stating:
According to our records, the software client you’re using to get Let’s Encrypt TLS/SSL certificates issued or renewed at least one HTTPS certificate in the past two weeks using the ACMEv1 protocol. Your client’s IP address was:
86.191.113.117

I did a reverse lookup:
86.191.113.117
host86-191-113-117.range86-191.btcentralplus.com
British Telecommunications PLC (AS2856)

I can’t think why these certificates are being issued from a client running on a BT server and linked to my email
Can can please explain what may be happening

I just received a very similar email and the IP address shown is my BT IP address . I did update my certs about a week ago but did this through my Synology Nas. The letsencrypt renewal is built into the DSM management software so am assuming I will not be the only one suffering a problem.

1 Like

Thanks @Patters_uk
I do have a Synology NAS box and BT is my ISP - so that’s given my a place to start looking

LE doesn’t verify that if client owner actually has control of email address when register a acme account.

Hi @Blarm1959

If you have a home NAS and BT is your ISP, your BT-ip address is used to create a certificate. So that’s expected.

Synology must update the NAS-client. Check, if there is an update.

1 Like

Could someone explain what actually needs to be done here? It seems updating certbot might be required, but it’s not a simple apt-get update. I don’t recognize any of the clients they mention except for certbot, nor do I recognize ACME. When the time came for SSL, I followed the LE/certbot instructions and now I have this confusing email worrying me. :frowning:

I got the same email and it referenced a SuddenLink owned IP that I have never used:

Hi,

According to our records, the software client you’re using to get Let’s
Encrypt TLS/SSL certificates issued or renewed at least one HTTPS certificate
in the past two weeks using the ACMEv1 protocol. Your client’s IP address was:

173.80.176.28

Not the best formatted email and not the best approach to not include the hostname that was requested in the ACMEv1 request.

Pretty sure this is a false-positive as I’m using certbot and ACMEv2 only on a single Ubuntu 18.04 host.

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.