Koozali.org: home of the SME Server

Lets Encrypt renew auth error

Offline Randall

  • *
  • 35
  • +0/-0
Re: Lets Encrypt renew auth error
« Reply #15 on: October 01, 2022, 08:59:23 AM »
This has happened again. Identical symptoms. www was no longer a member of shared group. I noticed that the group file was last touched on the same date I last applied updates.

Confirmed that this gets removed when applying updates:
- Re-inserted the www into shared group (usermod -a -G shared www), rebooted
- Verified that root web page is now accessible
- Applied latest updates via UI
- Noted www was still present in shared group
- Issued signal-event post-upgrade;  signal-event reboot via shell (UI had closed, was inaccessible)
- When dust had settled, it was broken again.

Presumably my cert should update now ...

Offline bunkobugsy

  • *
  • 274
  • +4/-0
Re: Lets Encrypt renew auth error
« Reply #16 on: October 01, 2022, 12:27:45 PM »
please show output of
Code: [Select]
cat /etc/passwd | egrep "www|apache"
Edited to add 'code' tags
« Last Edit: October 01, 2022, 03:59:18 PM by ReetP »

Offline Randall

  • *
  • 35
  • +0/-0
Re: Lets Encrypt renew auth error
« Reply #17 on: October 01, 2022, 05:10:51 PM »
Here ya go:

[root@e-smith ~]# cat /etc/passwd | egrep "www|apache"
apache:x:102:102:Apache:/var/www:/sbin/nologin
www:x:102:102:SME Server web server:/home/e-smith:/bin/false
[root@e-smith ~]#

Offline Jean-Philippe Pialasse

  • *
  • 2,747
  • +11/-0
  • aka Unnilennium
    • http://smeserver.pialasse.com
Re: Lets Encrypt renew auth error
« Reply #18 on: November 07, 2022, 08:54:21 AM »
I am wondering if you happen to change the default Primary Ibay group from shared to something else ?

Offline Randall

  • *
  • 35
  • +0/-0
Re: Lets Encrypt renew auth error
« Reply #19 on: November 10, 2022, 03:58:03 AM »
No, I haven't changed anything like that. Just added new groups. Though it's probably got 15 years or so of update history from earlier versions, so maybe something from it's past has finally caught up ...