Profile Details

Toggle Sidebar
Recent updates
  • Mansoor
    Mansoor voted on the post, Re: Logs Rotation?

    Most rotation is controlled by /etc/logrotate.conf and all the configlets in /etc/logrotate.d/. If you have files in /var/log/samba.old then rotation is taking place. That is how they got there in the first place.

  • Great news Nick.

    Should testers report back their findings here in this thread or somewhere else?

  • Mansoor
    Mansoor started a new discussion, Logs Rotation?

    Logs Rotation?

    /var/log folder in my server is more than 65GB in size! The largest folder in there is ./samba/old. It's clear that no log rotation is taking place. Any idea how clearOS logrotate works and where to find its config file?

    Thank you

  • Mansoor
    Mansoor replied to a discussion, Let's Encrypt Renew Failure

    Nick Howitt wrote:
    AFAIK the ClearOS repo packages are fine. python2-cffi python2-ipaddress and python2-pyOpenSSL are not needed and python2-cryptography-1.7.2-2.el7 is fine. I have a feeling you have repo problems.

    python2-cffi and python2-ipaddress are required for the newer version of python2-pyOpenSSL. python2-pyOpenSSL is a request for app-lets-encrypt.


    Nick Howitt wrote:What do you get from "yum repolist".

    Here is the output:

  • Mansoor
    Mansoor's reply was accepted as an answer

    Re: Let's Encrypt Renew Failure

    Ok, I got rid of all pip and rpm packages related to certbot and started fresh. The aim is to have working certbot and Let's Encrypt app.

    1. Manually installing an updated version of pyOpenSSL and its dependencies, because the one in the yum repo is outdated.


    2. Installed certbot and the dashboard app:

  • Mansoor
    Mansoor replied to a discussion, Let's Encrypt Renew Failure

    Ok, I got rid of all pip and rpm packages related to certbot and started fresh. The aim is to have working certbot and Let's Encrypt app.

    1. Manually installing an updated version of pyOpenSSL and its dependencies, because the one in the yum repo is outdated.


    2. Installed certbot and the dashboard app:

  • Mansoor
    Mansoor replied to a discussion, Let's Encrypt Renew Failure

    You are right Nick. I installed the Let’s Encrypt app after renewing the domain’s certificate. That was a mistake, because it installed old versions of the python modules (using yum) and certbot is broken again!

    At least my website is working now with a renewed certificate. I’ll try to fix the issue later on and update this thread. I’ll use a simple crontab to renew certificates instead of relying on the Let’s Encrypt app.

  • Mansoor
    Mansoor's reply was accepted as an answer

    Re: Let's Encrypt Renew Failure

    Thank you Nick.

    The python modules installed by yum are outdated. I was able to solve the problem by doing the following:

  • Mansoor
    Mansoor replied to a discussion, Let's Encrypt Renew Failure

    Thank you Nick.

    The python modules installed by yum are outdated. I was able to solve the problem by doing the following:

  • Mansoor
    Mansoor started a new discussion, Let's Encrypt Renew Failure

    Let's Encrypt Renew Failure

    One domain's certificate expired. When I looked at Let's Encrypt log, I found that it has not run since last year! So, I tried to manually renew using
    ```sudo certbot renew```

    but then got the following error:

    ```
    Traceback (most recent call last):
    File "/bin/certbot", line 9, in <module>
    load_entry_point('certbot==1.3.0', 'console_scripts', 'certbot')()
    File "/usr/lib/python2.7/site-packages/pkg_resources/__init__.py", line 489, in load_entry_point
    return get_distribution(dist).load_entry_point(group, name)
    File "/usr/lib/python2.7/site-packages/pkg_resources/__init__.py", line 2852, in load_entry_point
    return ep.load()
    File "/usr/lib/python2.7/site-packages/pkg_resources/__init__.py", line 2443, in load
    return self.resolve()
    File "/usr/lib/python2.7/site-packages/pkg_resources/__init__.py", line 2449, in resolve
    module = __import__(self.module_name, fromlist=['__name__'], level=0)
    File "/usr/lib/python2.7/site-packages/certbot/main.py", line 2, in <module>
    from certbot._internal import main as internal_main
    File "/usr/lib/python2.7/site-packages/certbot/_internal/main.py", line 23, in <module>
    from certbot._internal import client
    File "/usr/lib/python2.7/site-packages/certbot/_internal/client.py", line 13, in <module>
    from acme import client as acme_client
    File "/usr/lib/python2.7/site-packages/acme/client.py", line 37, in <module>
    requests.packages.urllib3.contrib.pyopenssl.inject_into_urllib3() # type: ignore
    File "/usr/lib/python2.7/site-packages/urllib3/contrib/pyopenssl.py", line 118, in inject_into_urllib3
    _validate_dependencies_met()
    File "/usr/lib/python2.7/site-packages/urllib3/contrib/pyopenssl.py", line 160, in _validate_dependencies_met
    "'pyOpenSSL' module missing required functionality. "
    ImportError: 'pyOpenSSL' module missing required functionality. Try upgrading to v0.14 or newer.
    ```

    It seems a common error, but all the solutions I found online didn't work. I tried to upgrade the 'pyOpenSSL' module using:
    ```sudo pip install --upgrade pyopenssl```

    but got the following error message:
    ```
    ERROR: Cannot uninstall 'pyOpenSSL'. It is a distutils installed project and thus we cannot accurately determine which files belong to it which would lead to only a partial uninstall.
    ```

    Any idea how to resume Let's Encrypt renew bot?

    Thank you