Topic: let's encrypt question

[JRBATM20192021]

@bunkobugsy

THANK YOU for your help I got it. The certificate is back now for the original.
I shouldn't open Pandora's box again if I do the follow commands for the other one
Like these
config setprop modSSL crt /home/e-smith/ssl.crt/brendasgetzlaw.com.crt
config setprop modSSL key /home/e-smith/ssl.key/brendasgetzlaw.com.key

Will it work correctly this time
Also do I need to upload the key and crt to the I-bay for the second domain or will it just work with the commands above and of course following the wiki?

[JRBATM20192021]

Everyone else

Sorry for blowing up SME Server while is excellent software and very secure I truly do love it is sometimes a pain in the ass when you mess something up like I have done.

Thank you for helping me.

[bunkobugsy]

Like these
config setprop modSSL crt /home/e-smith/ssl.crt/brendasgetzlaw.com.crt
config setprop modSSL key /home/e-smith/ssl.key/brendasgetzlaw.com.key

Will it work correctly this time
Also do I need to upload the key and crt to the I-bay for the second domain or will it just work with the commands above and of course following the wiki?

Should work, you need to put the 2 files in the exact path specified.

Follow the above commands with either:
signal-event console-save
signal-event reboot
or
signal-event post-upgrade
signal-event reboot

And you already know how to undo this.

[JRBATM20192021]

Yes I do! Thank you again for your help!!!!

[Jean-Philippe Pialasse]

just remove every { and }

also those are not the locations suggested:

config setprop modSSL crt /home/e-smith/ssl.crt/{domain}.crt
config setprop modSSL key /home/e-smith/ssl.key/{domain}.key

.

this is will be overwritten by self signed certificate if this domain is the Primary.

AGAIN, i told you not to go to the rabbit hole of this page as you show you do not understand what you do, but you choose to go there and do not provide the information asked using the debug commands I asked to help fix your initial problem.

You just keep inputing commands without the proper understanding of what you do and without trying actually to understand what gone wrong first. You are just adding layers and layers to your problem.

[ReetP]

You just keep inputing commands without the proper understanding of what you do and without trying actually to understand what gone wrong first. You are just adding layers and layers to your problem.

Hence the cert for this wrong. And http as well. Not a great look for a lawyers website.

brendasgetzlaw.com

He really ought to fix that.

[ReetP]

ALL other INFORMATION is sensitive that I would hope you understand I am NOT willing to share in a PUBLIC forum that just ANYONE can read.

We don't need the capitals thanks.

You need to give us enough to describe the situation, which you have not. You can obfuscate relevant information (and we would tell you to PM us if we thought it was genuinely sensitive) but you need to show the basic information requested, though I am not sure you can tell the difference between what needs obfuscating and what does not.

I would prefer an ANSWER to fix this not CRITICISM if I can fix the security certificate for kspk.com that is all I want and I will leave you all alone.

The criticism is that you still don't give the information required to give you an answer that will solve your issues. Not sure what else we can say. That is the answer currently.

These will reveal nothing that will cause an issue but would have told us a lot.

Code: [Select]

/sbin/e-smith/audittools/templates
/sbin/e-smith/audittools/newrpms

ll -d /home/e-smith/files/ibays/Primary/html/.well-known
ll -d /home/e-smith/files/ibays/Primary/html/.well-known/acme-challenge
Or Server Manager, report a bug, create configuration report.

"Solving a problem requires understanding it"

We actually understand most of what is going on, but because we don't have accurate information we can't tell you properly how to fix it. That is why you have no definitive simple answer that you crave, and your certificates are still not right. Yes for sure you can carry on bodging your way around it, but then it will break again and we'll be back to the start.

https://xyproblem.info/

User wants to do X.
User doesn't know how to do X, but thinks they can fumble their way to a solution if they can just manage to do Y.
User doesn't know how to do Y either.
User asks for help with Y.
Others try to help user with Y, but are confused because Y seems like a strange problem to want to solve.
After much interaction and wasted time, it finally becomes clear that the user really wants help with X, and that Y wasn't even a suitable solution for X.

An almost perfect description of these 4 pages.

I work other Jobs I don't have the leisure to 100% dedicate my time to this. This is side job.

This is not a job for any of us.

We are all volunteers doing this for free in our spare time, including building code and fixing bugs and trying to help users.

Perhaps you should think about this a bit.

Your donation from yourself and your clients to assist in keeping this whole show running will be welcome:

https://forums.koozali.org/index.php?action=profile;area=subscriptions

Remember, this is open source. Not free sauce.

[JRBATM20192021]

What is it that you would like to know? because I'm pretty sure I have given you most info but if you tell me what you need I can probably give it to you.

I would like to know how to carry out this wiki here because I think it will work
https://wiki.koozali.org/Certificates_Concepts#Commercial_certificates

When I go to this domain /home/e-smith/ it is read only and will not let me add the new ssl.crt and ssl.key will it hurt to put the files else where?

[Jean-Philippe Pialasse]

What is it that you would like to know? because I'm pretty sure I have given you most info but if you tell me what you need I can probably give it to you.

for the third time we clearly ask the output of those commands  (and a 4th was more subtle) , and you just dodge the issue.

Code: [Select]


/sbin/e-smith/audittools/templates
/sbin/e-smith/audittools/newrpms

ll -d /home/e-smith/files/ibays/Primary/html/.well-known
ll -d /home/e-smith/files/ibays/Primary/html/.well-known/acme-challenge



[ReetP]

What is it that you would like to know? because I'm pretty sure I have given you most info but if you tell me what you need I can probably give it to you.

Start at the top and read down.

You might need to do that more than once.

I would like to know how to carry out this wiki here because I think it will work
https://wiki.koozali.org/Certificates_Concepts#Commercial_certificates

No, the existing method will work but as you still don't understand the problem or provide enough information our answers are general and meaningless to you.

Using this method is of no benefit to you and your somewhat trashed server. It won't fix your existing issues.

When I go to this domain /home/e-smith/

That's a directory.

it is read only and will not let me add the new ssl.crt and ssl.key will it hurt to put the files else where?

XY Problem. Yes. See above for reference.

Is there a way to restore or undo a mistake in SME SERVER like in Windows where you can system restore like after you get a trojan horse virus????

Yup. Depends what you did. It's in the manual. See "custom-templates, "backup/restore", or snapshots with VMs.

You do take regular backups don't you?

[JRBATM20192021]

Not sure which commands you want to see the output of do you mean these?

ll -d /home/e-smith/files/ibays/Primary/html/.well-known
ll -d /home/e-smith/files/ibays/Primary/html/.well-known/acme-challenge

I assume these are directories

/sbin/e-smith/audittools/templates
/sbin/e-smith/audittools/newrpms

All commands from
https://wiki.koozali.org/Certificates_Concepts#Commercial_certificates
Don't bring back anything in putty

Existing method? you mean the way the original domain SSL is done??

Yes I know /home/e-smith/ is a directory that was a mistake.

Yes of course I take regular backups.

[JRBATM20192021]

This is what the commands returned

[root@www ~]# /sbin/e-smith/audittools/newrpms
Loaded plugins: fastestmirror, post-transaction-actions, priorities, smeserver
Loading mirror speeds from cached hostfile
 * base: repos.forethought.net
 * smeaddons: www.mirrorservice.org
 * smeos: www.mirrorservice.org
 * smeupdates: www.mirrorservice.org
 * updates: forksystems.mm.fcix.net
Extra Packages
GeoIP.x86_64                                 1.6.12-9.el7.sme     @smecontribs
GeoIP-GeoLite-data.noarch                    2018.06-7.el7.sme    @smecontribs
GeoIP-GeoLite-data-extra.noarch              2018.06-7.el7.sme    @smecontribs
bglibs.x86_64                                1.102-2.el7.sme      @anaconda/10.0
clamav.x86_64                                0.103.2-1.el7        @anaconda/10.0
clamav-data.noarch                           0.103.2-1.el7        @anaconda/10.0
clamav-filesystem.noarch                     0.103.2-1.el7        @anaconda/10.0
clamav-lib.x86_64                            0.103.2-1.el7        @anaconda/10.0
clamav-update.x86_64                         0.103.2-1.el7        @anaconda/10.0
clamd.x86_64                                 0.103.2-1.el7        @anaconda/10.0
cvm.x86_64                                   0.82-1.el7.sme       @anaconda/10.0
dehydrated.noarch                            0.6.5-1.el7          @smeos
e-smith-LPRng.noarch                         2.6.0-7.el7.sme      @anaconda/10.0
e-smith-apache.noarch                        2.6.0-14.el7.sme     @anaconda/10.0
e-smith-backup.noarch                        2.6.0-27.el7.sme     @anaconda/10.0
e-smith-base.x86_64                          5.8.1-1.el7.sme      @anaconda/10.0
e-smith-cvm-unix-local.noarch                2.6.0-3.el7.sme      @anaconda/10.0
e-smith-devtools.noarch                      2.6.0-10.el7.sme     @anaconda/10.0
e-smith-email.noarch                         5.6.0-11.el7.sme     @anaconda/10.0
e-smith-ibays.noarch                         2.6.0-17.el7.sme     @anaconda/10.0
e-smith-ldap.noarch                          5.6.0-12.el7.sme     @anaconda/10.0
e-smith-lib.noarch                           2.6.0-14.el7.sme     @anaconda/10.0
e-smith-lib-compspec.noarch                  2.6.0-3.el7.sme      @anaconda/10.0
e-smith-manager.x86_64                       2.8.0-34.el7.sme     @anaconda/10.0
e-smith-mysql.noarch                         2.6.0-21.el7.sme     @anaconda/10.0
e-smith-ntp.noarch                           2.6.0-13.el7.sme     @anaconda/10.0
e-smith-nutUPS.noarch                        2.6.0-11.el7.sme     @anaconda/10.0
e-smith-packetfilter.noarch                  2.6.0-7.el7.sme      @anaconda/10.0
e-smith-proxy.noarch                         5.6.0-9.el7.sme      @anaconda/10.0
e-smith-qmail.noarch                         2.6.0-12.el7.sme     @anaconda/10.0
e-smith-radiusd.noarch                       2.6.0-15.el7.sme     @anaconda/10.0
e-smith-samba.noarch                         2.6.0-23.el7.sme     @anaconda/10.0
fail2ban-sendmail.noarch                     0.11.2-3.el7         @smecontribs
fail2ban-server.noarch                       0.11.2-3.el7         @smecontribs
gd-last.x86_64                               2.3.2-1.el7.remi     @anaconda/10.0
libsodium.x86_64                             1.0.18-1.el7.remi    @remi
libzip5.x86_64                               1.8.0-2.el7.remi     @remi-safe
libzstd.x86_64                               1.5.0-1.el7          @smeupdates
mod_authnz_external.x86_64                   3.3.1-7.el7          @anaconda/10.0
oniguruma5php.x86_64                         6.9.7.1-1.el7.remi   @anaconda/10.0
perl-B-Hooks-EndOfScope.noarch               0.24-1.of.el7        @smecontribs
perl-B-Hooks-OP-Check.x86_64                 0.22-1.of.el7        @smecontribs
perl-Class-Load-XS.x86_64                    0.10-1.of.el7        @smecontribs
perl-Class-Method-Modifiers.noarch           2.13-1.of.el7        @smecontribs
perl-Class-XSAccessor.x86_64                 1.19-2.el7           @smecontribs
perl-Clone-PP.noarch                         1.06-1.of.el7        @smecontribs
perl-Data-Dumper-Concise.noarch              2.023-1.of.el7       @smecontribs
perl-Data-IEEE754.noarch                     0.01-1.of.el7        @smecontribs
perl-Data-Printer.noarch                     0.35-1.of.el7        @smecontribs
perl-Data-Validate-IP.noarch                 0.27-13.el7          @smecontribs
perl-DateTime.x86_64                         2:1.55-1.of.el7      @smecontribs
perl-DateTime-Locale.noarch                  1.33-1.of.el7        @smecontribs
perl-DateTime-TimeZone.noarch                2.51-1.of.el7        @smecontribs
perl-Devel-GlobalDestruction.noarch          0.14-1.of.el7        @smecontribs
perl-Devel-OverloadInfo.noarch               0.007-1.of.el7       @smecontribs
perl-Devel-StackTrace.noarch                 1:2.04-1.of.el7      @smecontribs
perl-Eval-Closure.noarch                     0.14-1.of.el7        @smecontribs
perl-File-HomeDir.noarch                     1.002-1.of.el7       @smecontribs
perl-Geo-IP.x86_64                           1.45-1.of.el7        @smecontribs
perl-GeoIP2.noarch                           2.001002-1.of.el7    @smecontribs
perl-Hash-FieldHash.x86_64                   0.14-1.of.el7        @smecontribs
perl-IO-Socket-IP.noarch                     0.37-1.el7.sme       @anaconda/10.0
perl-Lexical-SealRequireHints.x86_64         0.011-1.of.el7       @smecontribs
perl-List-AllUtils.noarch                    0.08-1.of.el7        @smecontribs
perl-MRO-Compat.noarch                       0.12-2.el7           @smecontribs
perl-Math-Int128.x86_64                      0.18-1.of.el7        @smecontribs
perl-Math-Int64.x86_64                       0.52-1.el7           @smecontribs
perl-MaxMind-DB-Common.noarch                0.040000-1.of.el7    @smecontribs
perl-MaxMind-DB-Reader.noarch                1.000004-1.of.el7    @smecontribs
perl-Module-Implementation.noarch            0.09-1.of.el7        @smecontribs
perl-Module-Runtime.noarch                   0.016-1.of.el7       @smecontribs
perl-Module-Runtime-Conflicts.noarch         0.003-1.of.el7       @smecontribs
perl-Moo.noarch                              2.004004-2.of.el7    @smecontribs
perl-MooX-StrictConstructor.noarch           0.006-1.of.el7       @smecontribs
perl-Moose.x86_64                            2.2015-1.of.el7      @smecontribs
perl-Net-Server.noarch                       2.007-2.el7          @anaconda/10.0
perl-Net-Works.noarch                        0.21-1.of.el7        @smecontribs
perl-Params-Classify.x86_64                  0.013-7.el7          @smecontribs
perl-Params-Validate.x86_64                  1.30-1.of.el7        @smecontribs
perl-Params-ValidationCompiler.noarch        0.30-1.of.el7        @smecontribs
perl-Razor-Agent.x86_64                      2.85-15.el7          @anaconda/10.0
perl-Regexp-Common.noarch                    2016020301-1.el7.sme @anaconda/10.0
perl-Role-Tiny.noarch                        2.001004-1.of.el7    @smecontribs
perl-Sort-Naturally.noarch                   1.03-8.el7           @smecontribs
perl-Specio.noarch                           0.47-1.of.el7        @smecontribs
perl-Sub-Exporter-Progressive.noarch         0.001013-1.of.el7    @smecontribs
perl-Sub-Identify.x86_64                     0.14-1.of.el7        @smecontribs
perl-Sub-Install.noarch                      0.928-1.of.el7       @smecontribs
perl-Sub-Name.x86_64                         0.26-1.of.el7        @smecontribs
perl-Sub-Quote.noarch                        2.006006-1.of.el7    @smecontribs
perl-Test-Warnings.noarch                    0.031-1.of.el7       @smecontribs
perl-Throwable.noarch                        1.000-1.of.el7       @smecontribs
perl-Try-Tiny.noarch                         0.22-1.of.el7        @smecontribs
perl-Variable-Magic.x86_64                   0.62-1.of.el7        @smecontribs
perl-bareword-filehandles.x86_64             0.007-1.of.el7       @smecontribs
perl-indirect.x86_64                         0.39-1.of.el7        @smecontribs
perl-multidimensional.x86_64                 0.014-1.of.el7       @smecontribs
perl-namespace-autoclean.noarch              0.29-1.of.el7        @smecontribs
perl-namespace-clean.noarch                  0.27-1.of.el7        @smecontribs

[JRBATM20192021]

Continued
perl-strictures.noarch                       2.000006-1.of.el7    @smecontribs
php-pear.noarch                              1:1.10.12-8.el7.remi @smeupdates
php55-php.x86_64                             5.5.38-12.el7.remi   @anaconda/10.0
php55-php-bcmath.x86_64                      5.5.38-12.el7.remi   @anaconda/10.0
php55-php-cli.x86_64                         5.5.38-12.el7.remi   @anaconda/10.0
php55-php-common.x86_64                      5.5.38-12.el7.remi   @anaconda/10.0
php55-php-enchant.x86_64                     5.5.38-12.el7.remi   @anaconda/10.0
php55-php-fpm.x86_64                         5.5.38-12.el7.remi   @anaconda/10.0
php55-php-gd.x86_64                          5.5.38-12.el7.remi   @anaconda/10.0
php55-php-imap.x86_64                        5.5.38-12.el7.remi   @anaconda/10.0
php55-php-intl.x86_64                        5.5.38-12.el7.remi   @anaconda/10.0
php55-php-ldap.x86_64                        5.5.38-12.el7.remi   @anaconda/10.0
php55-php-mbstring.x86_64                    5.5.38-12.el7.remi   @anaconda/10.0
php55-php-mcrypt.x86_64                      5.5.38-12.el7.remi   @anaconda/10.0
php55-php-mysqlnd.x86_64                     5.5.38-12.el7.remi   @anaconda/10.0
php55-php-opcache.x86_64                     5.5.38-12.el7.remi   @anaconda/10.0
php55-php-pdo.x86_64                         5.5.38-12.el7.remi   @anaconda/10.0
php55-php-pear.noarch                        1:1.10.12-9.el7.remi @remi-safe
php55-php-pecl-zip.x86_64                    1.19.3-2.el7.remi    @remi-safe
php55-php-process.x86_64                     5.5.38-12.el7.remi   @anaconda/10.0
php55-php-snmp.x86_64                        5.5.38-12.el7.remi   @anaconda/10.0
php55-php-soap.x86_64                        5.5.38-12.el7.remi   @anaconda/10.0
php55-php-tidy.x86_64                        5.5.38-12.el7.remi   @anaconda/10.0
php55-php-xml.x86_64                         5.5.38-12.el7.remi   @anaconda/10.0
php55-php-xmlrpc.x86_64                      5.5.38-12.el7.remi   @anaconda/10.0
php56-php.x86_64                             5.6.40-28.el7.remi   @remi-safe
php56-php-bcmath.x86_64                      5.6.40-28.el7.remi   @remi-safe
php56-php-cli.x86_64                         5.6.40-28.el7.remi   @remi-safe
php56-php-common.x86_64                      5.6.40-28.el7.remi   @remi-safe
php56-php-enchant.x86_64                     5.6.40-28.el7.remi   @remi-safe
php56-php-fpm.x86_64                         5.6.40-28.el7.remi   @remi-safe
php56-php-gd.x86_64                          5.6.40-28.el7.remi   @remi-safe
php56-php-imap.x86_64                        5.6.40-28.el7.remi   @remi-safe
php56-php-intl.x86_64                        5.6.40-28.el7.remi   @remi-safe
php56-php-ldap.x86_64                        5.6.40-28.el7.remi   @remi-safe
php56-php-mbstring.x86_64                    5.6.40-28.el7.remi   @remi-safe
php56-php-mcrypt.x86_64                      5.6.40-28.el7.remi   @remi-safe
php56-php-mysqlnd.x86_64                     5.6.40-28.el7.remi   @remi-safe
php56-php-opcache.x86_64                     5.6.40-28.el7.remi   @remi-safe
php56-php-pdo.x86_64                         5.6.40-28.el7.remi   @remi-safe
php56-php-pear.noarch                        1:1.10.12-9.el7.remi @remi-safe
php56-php-pecl-zip.x86_64                    1.19.3-2.el7.remi    @remi-safe
php56-php-process.x86_64                     5.6.40-28.el7.remi   @remi-safe
php56-php-snmp.x86_64                        5.6.40-28.el7.remi   @remi-safe
php56-php-soap.x86_64                        5.6.40-28.el7.remi   @remi-safe
php56-php-tidy.x86_64                        5.6.40-28.el7.remi   @remi-safe
php56-php-xml.x86_64                         5.6.40-28.el7.remi   @remi-safe
php56-php-xmlrpc.x86_64                      5.6.40-28.el7.remi   @remi-safe
php70-php.x86_64                             7.0.33-28.el7.remi   @remi-safe
php70-php-bcmath.x86_64                      7.0.33-28.el7.remi   @remi-safe
php70-php-cli.x86_64                         7.0.33-28.el7.remi   @remi-safe
php70-php-common.x86_64                      7.0.33-28.el7.remi   @remi-safe
php70-php-enchant.x86_64                     7.0.33-28.el7.remi   @remi-safe
php70-php-fpm.x86_64                         7.0.33-28.el7.remi   @remi-safe
php70-php-gd.x86_64                          7.0.33-28.el7.remi   @remi-safe
php70-php-imap.x86_64                        7.0.33-28.el7.remi   @remi-safe
php70-php-intl.x86_64                        7.0.33-28.el7.remi   @remi-safe
php70-php-json.x86_64                        7.0.33-28.el7.remi   @remi-safe
php70-php-ldap.x86_64                        7.0.33-28.el7.remi   @remi-safe
php70-php-mbstring.x86_64                    7.0.33-28.el7.remi   @remi-safe
php70-php-mcrypt.x86_64                      7.0.33-28.el7.remi   @remi-safe
php70-php-mysqlnd.x86_64                     7.0.33-28.el7.remi   @remi-safe
php70-php-opcache.x86_64                     7.0.33-28.el7.remi   @remi-safe
php70-php-pdo.x86_64                         7.0.33-28.el7.remi   @remi-safe
php70-php-pear.noarch                        1:1.10.12-9.el7.remi @remi-safe
php70-php-pecl-zip.x86_64                    1.19.3-2.el7.remi    @remi-safe
php70-php-process.x86_64                     7.0.33-28.el7.remi   @remi-safe
php70-php-snmp.x86_64                        7.0.33-28.el7.remi   @remi-safe
php70-php-soap.x86_64                        7.0.33-28.el7.remi   @remi-safe
php70-php-tidy.x86_64                        7.0.33-28.el7.remi   @remi-safe
php70-php-xml.x86_64                         7.0.33-28.el7.remi   @remi-safe
php70-php-xmlrpc.x86_64                      7.0.33-28.el7.remi   @remi-safe
php71-php.x86_64                             7.1.33-15.el7.remi   @remi-safe
php71-php-bcmath.x86_64                      7.1.33-15.el7.remi   @remi-safe
php71-php-cli.x86_64                         7.1.33-15.el7.remi   @remi-safe
php71-php-common.x86_64                      7.1.33-15.el7.remi   @remi-safe
php71-php-enchant.x86_64                     7.1.33-15.el7.remi   @remi-safe
php71-php-fpm.x86_64                         7.1.33-15.el7.remi   @remi-safe
php71-php-gd.x86_64                          7.1.33-15.el7.remi   @remi-safe
php71-php-imap.x86_64                        7.1.33-15.el7.remi   @remi-safe
php71-php-intl.x86_64                        7.1.33-15.el7.remi   @remi-safe
php71-php-json.x86_64                        7.1.33-15.el7.remi   @remi-safe
php71-php-ldap.x86_64                        7.1.33-15.el7.remi   @remi-safe
php71-php-mbstring.x86_64                    7.1.33-15.el7.remi   @remi-safe
php71-php-mcrypt.x86_64                      7.1.33-15.el7.remi   @remi-safe
php71-php-mysqlnd.x86_64                     7.1.33-15.el7.remi   @remi-safe
php71-php-opcache.x86_64                     7.1.33-15.el7.remi   @remi-safe
php71-php-pdo.x86_64                         7.1.33-15.el7.remi   @remi-safe
php71-php-pear.noarch                        1:1.10.12-9.el7.remi @remi-safe
php71-php-pecl-zip.x86_64                    1.19.3-2.el7.remi    @remi-safe
php71-php-process.x86_64                     7.1.33-15.el7.remi   @remi-safe
php71-php-snmp.x86_64                        7.1.33-15.el7.remi   @remi-safe
php71-php-soap.x86_64                        7.1.33-15.el7.remi   @remi-safe
php71-php-tidy.x86_64                        7.1.33-15.el7.remi   @remi-safe
php71-php-xml.x86_64                         7.1.33-15.el7.remi   @remi-safe
php71-php-xmlrpc.x86_64                      7.1.33-15.el7.remi   @remi-safe
php72-php.x86_64                             7.2.34-6.el7.remi    @remi-safe
php72-php-bcmath.x86_64                      7.2.34-6.el7.remi    @remi-safe
php72-php-cli.x86_64                         7.2.34-6.el7.remi    @remi-safe
php72-php-common.x86_64                      7.2.34-6.el7.remi    @remi-safe
php72-php-enchant.x86_64                     7.2.34-6.el7.remi    @remi-safe
php72-php-fpm.x86_64                         7.2.34-6.el7.remi    @remi-safe
php72-php-gd.x86_64                          7.2.34-6.el7.remi    @remi-safe
php72-php-imap.x86_64                        7.2.34-6.el7.remi    @remi-safe
php72-php-intl.x86_64                        7.2.34-6.el7.remi    @remi-safe
php72-php-json.x86_64                        7.2.34-6.el7.remi    @remi-safe
php72-php-ldap.x86_64                        7.2.34-6.el7.remi    @remi-safe
php72-php-mbstring.x86_64                    7.2.34-6.el7.remi    @remi-safe
php72-php-mysqlnd.x86_64                     7.2.34-6.el7.remi    @remi-safe
php72-php-opcache.x86_64                     7.2.34-6.el7.remi    @remi-safe
php72-php-pdo.x86_64                         7.2.34-6.el7.remi    @remi-safe
php72-php-pear.noarch                        1:1.10.12-9.el7.remi @remi-safe
php72-php-pecl-mcrypt.x86_64                 1.0.4-1.el7.remi     @anaconda/10.0
php72-php-pecl-zip.x86_64                    1.19.3-2.el7.remi    @remi-safe
php72-php-process.x86_64                     7.2.34-6.el7.remi    @remi-safe
php72-php-snmp.x86_64                        7.2.34-6.el7.remi    @remi-safe
php72-php-soap.x86_64                        7.2.34-6.el7.remi    @remi-safe
php72-php-tidy.x86_64                        7.2.34-6.el7.remi    @remi-safe
php72-php-xml.x86_64                         7.2.34-6.el7.remi    @remi-safe
php72-php-xmlrpc.x86_64                      7.2.34-6.el7.remi    @remi-safe
php73-php.x86_64                             7.3.29-1.el7.remi    @remi-safe
php73-php-bcmath.x86_64                      7.3.29-1.el7.remi    @remi-safe
php73-php-cli.x86_64                         7.3.29-1.el7.remi    @remi-safe
php73-php-common.x86_64                      7.3.29-1.el7.remi    @remi-safe
php73-php-enchant.x86_64                     7.3.29-1.el7.remi    @remi-safe
php73-php-fpm.x86_64                         7.3.29-1.el7.remi    @remi-safe
php73-php-gd.x86_64                          7.3.29-1.el7.remi    @remi-safe
php73-php-imap.x86_64                        7.3.29-1.el7.remi    @remi-safe
php73-php-intl.x86_64                        7.3.29-1.el7.remi    @remi-safe
php73-php-json.x86_64                        7.3.29-1.el7.remi    @remi-safe
php73-php-ldap.x86_64                        7.3.29-1.el7.remi    @remi-safe
php73-php-mbstring.x86_64                    7.3.29-1.el7.remi    @remi-safe
php73-php-mysqlnd.x86_64                     7.3.29-1.el7.remi    @remi-safe
php73-php-opcache.x86_64                     7.3.29-1.el7.remi    @remi-safe
php73-php-pdo.x86_64                         7.3.29-1.el7.remi    @remi-safe
php73-php-pear.noarch                        1:1.10.12-9.el7.remi @remi-safe
php73-php-pecl-zip.x86_64                    1.19.3-2.el7.remi    @remi-safe
php73-php-process.x86_64                     7.3.29-1.el7.remi    @remi-safe
php73-php-snmp.x86_64                        7.3.29-1.el7.remi    @remi-safe
php73-php-soap.x86_64                        7.3.29-1.el7.remi    @remi-safe
php73-php-tidy.x86_64                        7.3.29-1.el7.remi    @remi-safe
php73-php-xml.x86_64                         7.3.29-1.el7.remi    @remi-safe

[JRBATM20192021]

Continued
php73-php-xmlrpc.x86_64                      7.3.29-1.el7.remi    @remi-safe
php74-php.x86_64                             7.4.21-1.el7.remi    @remi-safe
php74-php-bcmath.x86_64                      7.4.21-1.el7.remi    @remi-safe
php74-php-cli.x86_64                         7.4.21-1.el7.remi    @remi-safe
php74-php-common.x86_64                      7.4.21-1.el7.remi    @remi-safe
php74-php-enchant.x86_64                     7.4.21-1.el7.remi    @remi-safe
php74-php-fpm.x86_64                         7.4.21-1.el7.remi    @remi-safe
php74-php-gd.x86_64                          7.4.21-1.el7.remi    @remi-safe
php74-php-imap.x86_64                        7.4.21-1.el7.remi    @remi-safe
php74-php-intl.x86_64                        7.4.21-1.el7.remi    @remi-safe
php74-php-json.x86_64                        7.4.21-1.el7.remi    @remi-safe
php74-php-ldap.x86_64                        7.4.21-1.el7.remi    @remi-safe
php74-php-mbstring.x86_64                    7.4.21-1.el7.remi    @remi-safe
php74-php-mysqlnd.x86_64                     7.4.21-1.el7.remi    @remi-safe
php74-php-opcache.x86_64                     7.4.21-1.el7.remi    @remi-safe
php74-php-pdo.x86_64                         7.4.21-1.el7.remi    @remi-safe
php74-php-pear.noarch                        1:1.10.12-9.el7.remi @remi-safe
php74-php-pecl-zip.x86_64                    1.19.3-2.el7.remi    @remi-safe
php74-php-process.x86_64                     7.4.21-1.el7.remi    @remi-safe
php74-php-snmp.x86_64                        7.4.21-1.el7.remi    @remi-safe
php74-php-soap.x86_64                        7.4.21-1.el7.remi    @remi-safe
php74-php-sodium.x86_64                      7.4.21-1.el7.remi    @remi-safe
php74-php-tidy.x86_64                        7.4.21-1.el7.remi    @remi-safe
php74-php-xml.x86_64                         7.4.21-1.el7.remi    @remi-safe
php74-php-xmlrpc.x86_64                      7.4.21-1.el7.remi    @remi-safe
php80-php.x86_64                             8.0.8-1.el7.remi     @remi-safe
php80-php-bcmath.x86_64                      8.0.8-1.el7.remi     @remi-safe
php80-php-cli.x86_64                         8.0.8-1.el7.remi     @remi-safe
php80-php-common.x86_64                      8.0.8-1.el7.remi     @remi-safe
php80-php-enchant.x86_64                     8.0.8-1.el7.remi     @remi-safe
php80-php-fpm.x86_64                         8.0.8-1.el7.remi     @remi-safe
php80-php-gd.x86_64                          8.0.8-1.el7.remi     @remi-safe
php80-php-imap.x86_64                        8.0.8-1.el7.remi     @remi-safe
php80-php-intl.x86_64                        8.0.8-1.el7.remi     @remi-safe
php80-php-ldap.x86_64                        8.0.8-1.el7.remi     @remi-safe
php80-php-mbstring.x86_64                    8.0.8-1.el7.remi     @remi-safe
php80-php-mysqlnd.x86_64                     8.0.8-1.el7.remi     @remi-safe
php80-php-opcache.x86_64                     8.0.8-1.el7.remi     @remi-safe
php80-php-pdo.x86_64                         8.0.8-1.el7.remi     @remi-safe
php80-php-pear.noarch                        1:1.10.12-9.el7.remi @remi-safe
php80-php-pecl-xmlrpc.x86_64                 1.0.0~rc2-1.el7.remi @anaconda/10.0
php80-php-pecl-zip.x86_64                    1.19.3-2.el7.remi    @remi-safe
php80-php-process.x86_64                     8.0.8-1.el7.remi     @remi-safe
php80-php-snmp.x86_64                        8.0.8-1.el7.remi     @remi-safe
php80-php-soap.x86_64                        8.0.8-1.el7.remi     @remi-safe
php80-php-sodium.x86_64                      8.0.8-1.el7.remi     @remi-safe
php80-php-tidy.x86_64                        8.0.8-1.el7.remi     @remi-safe
php80-php-xml.x86_64                         8.0.8-1.el7.remi     @remi-safe
proftpd.x86_64                               1.3.5e-10.el7        @anaconda/10.0
pyzor.noarch                                 0.5.0-10.el7         @anaconda/10.0
qpsmtpd.noarch                               0.96-19.el7.sme      @anaconda/10.0
smeserver-audittools.noarch                  1.6.0-2.el7.sme      @anaconda/10.0
smeserver-clamav.noarch                      2.7.0-8.el7.sme      @anaconda/10.0
smeserver-extrarepositories-atomic.noarch    0.1-31               @smeaddons
smeserver-extrarepositories-centos-sclo.noarch
                                             0.1-31               @smeaddons
smeserver-extrarepositories-egroupware.noarch
                                             0.1-31               @smeaddons
smeserver-extrarepositories-elastic.noarch   0.1-31               @smeaddons
smeserver-extrarepositories-elrepo.noarch    0.1-31               @smeaddons
smeserver-extrarepositories-epel.noarch      0.1-31               @smeaddons
smeserver-extrarepositories-erlang.noarch    0.1-31               @smeaddons
smeserver-extrarepositories-freeswitch.noarch
                                             0.1-31               @smeaddons
smeserver-extrarepositories-fws.noarch       0.1-31               @smeaddons
smeserver-extrarepositories-libreswan.noarch 0.1-31               @smeaddons
smeserver-extrarepositories-node.noarch      0.1-31               @smeaddons
smeserver-extrarepositories-okay.noarch      0.1-31               @smeaddons
smeserver-extrarepositories-openfusion.noarch
                                             0.1-31               @smeaddons
smeserver-extrarepositories-pgsql.noarch     0.1-31               @smeaddons
smeserver-extrarepositories-reetp.noarch     0.1-31               @smeaddons
smeserver-extrarepositories-remi-ocsinventory.noarch
                                             0.1-31               @smeaddons
smeserver-extrarepositories-remi-roundcube.noarch
                                             0.1-31               @smeaddons
smeserver-extrarepositories-remi-unsafe.noarch
                                             0.1-31               @smeaddons
smeserver-extrarepositories-rpmfusion.noarch 0.1-31               @smeaddons
smeserver-extrarepositories-sogo.noarch      0.1-31               @smeaddons
smeserver-extrarepositories-spectrum2.noarch 0.1-31               @smeaddons
smeserver-extrarepositories-springdale.noarch
                                             0.1-31               @smeaddons
smeserver-extrarepositories-stephdl.noarch   0.1-31               @smeaddons
smeserver-extrarepositories-virtualbox.noarch
                                             0.1-31               @smeaddons
smeserver-extrarepositories-webtatic.noarch  0.1-31               @smeaddons
smeserver-extrarepositories-xymon.noarch     0.1-31               @smeaddons
smeserver-extrarepositories-zabbix.noarch    0.1-31               @smeaddons
smeserver-extrarepositories-zmrepo.noarch    0.1-31               @smeaddons
smeserver-fail2ban.noarch                    9:0.1.18-30.el7.sme  @smecontribs
smeserver-geoip.noarch                       1.2-18.el7.sme       @smecontribs
smeserver-horde.noarch                       1.0.0-27.el7.sme     @anaconda/10.0
smeserver-locale-bg.noarch                   2.6.0-15.el7.sme     @anaconda/10.0
smeserver-locale-da.noarch                   2.6.0-15.el7.sme     @anaconda/10.0
smeserver-locale-de.noarch                   2.6.0-15.el7.sme     @anaconda/10.0
smeserver-locale-el.noarch                   2.6.0-15.el7.sme     @anaconda/10.0
smeserver-locale-es.noarch                   2.6.0-15.el7.sme     @anaconda/10.0
smeserver-locale-et.noarch                   2.6.0-15.el7.sme     @anaconda/10.0
smeserver-locale-fr.noarch                   2.6.0-15.el7.sme     @anaconda/10.0
smeserver-locale-he.noarch                   2.6.0-15.el7.sme     @anaconda/10.0
smeserver-locale-hu.noarch                   2.6.0-15.el7.sme     @anaconda/10.0
smeserver-locale-id.noarch                   2.6.0-15.el7.sme     @anaconda/10.0
smeserver-locale-it.noarch                   2.6.0-15.el7.sme     @anaconda/10.0
smeserver-locale-ja.noarch                   2.6.0-15.el7.sme     @anaconda/10.0
smeserver-locale-nb.noarch                   2.6.0-15.el7.sme     @anaconda/10.0
smeserver-locale-nl.noarch                   2.6.0-15.el7.sme     @anaconda/10.0
smeserver-locale-pl.noarch                   2.6.0-15.el7.sme     @anaconda/10.0
smeserver-locale-pt.noarch                   2.6.0-15.el7.sme     @anaconda/10.0
smeserver-locale-pt_BR.noarch                2.6.0-15.el7.sme     @anaconda/10.0
smeserver-locale-ro.noarch                   2.6.0-15.el7.sme     @anaconda/10.0
smeserver-locale-ru.noarch                   2.6.0-15.el7.sme     @anaconda/10.0
smeserver-locale-sl.noarch                   2.6.0-15.el7.sme     @anaconda/10.0
smeserver-locale-sv.noarch                   2.6.0-15.el7.sme     @anaconda/10.0
smeserver-locale-th.noarch                   2.6.0-15.el7.sme     @anaconda/10.0
smeserver-locale-tr.noarch                   2.6.0-15.el7.sme     @anaconda/10.0
smeserver-locale-zh_CN.noarch                2.6.0-15.el7.sme     @anaconda/10.0
smeserver-locale-zh_TW.noarch                2.6.0-15.el7.sme     @anaconda/10.0
smeserver-php.x86_64                         3.0.0-36.el7.sme     @anaconda/10.0
smeserver-qpsmtpd.noarch                     2.7.0-3.el7.sme      @anaconda/10.0
smeserver-release.noarch                     26:10.0-3.el7.sme    @anaconda/10.0
smeserver-remoteuseraccess.noarch            1.3-5.el7.sme        @smecontribs
smeserver-yum.noarch                         2.6.0-55.el7.sme     @anaconda/10.0
spamassassin.x86_64                          3.4.5-1.el7.sme      @anaconda/10.0
[root@www ~]#

[root@www ~]# /sbin/e-smith/audittools/templates
[root@www ~]#

[root@www ~]# ll -d /home/e-smith/files/ibays/Primary/html/.well-known
drwxrwsr-x 3 apache shared 28 Oct 14  2021 /home/e-smith/files/ibays/Primary/html/.well-known
[root@www ~]#


[root@www ~]# ll -d /home/e-smith/files/ibays/Primary/html/.well-known/acme-challenge
drwxrwsr-x 2 apache shared 6 Jan 17 02:18 /home/e-smith/files/ibays/Primary/html/.well-known/acme-challenge
[root@www ~]# 

[JRBATM20192021]

Okay to catch everybody up I have been involved in several behind the scenes discussions. So My setup up consists Two domains on one server one in primary ibay and the other in another ibay
single public ip with both domains on it
here is a map to describe my setup
https://drive.google.com/file/d/1e9ecJQq2dsoEiu4OmjkUWwxyrUEI8rbZ/view
So it was suggested that I try the following
db domains setprop brendasgetzlaw.com letsencryptSSLcert enabled because I didn't have a letsencrypt enabled for this domain.
Running the command here db domains show returned


[root@www ~]# db domains show
brendasgetzlaw.com=domain
    Content=bsglawoffice
    Description=BSG
    Nameservers=localhost
    letsencryptSSLcert=enabled
kspk.com=domain
    Content=Primary
    Description=Primary domain
    Nameservers=localhost
    Removable=no
    SystemPrimaryDomain=yes
    letsencryptSSLcert=enabled
[root@www ~]#

Then it was suggested that I run the following commands
db domains setprop brendasgetzlaw.com letsencryptSSLcert enabled
db hosts setprop www.brendasgetzlaw.com letsencryptSSLcert enabled
signal-event smeserver-letsencrypt-update
dehydrated -c -x

Which returned this below
# INFO: Using main config file /etc/dehydrated/config
Processing kspk.com with alternative names: brendasgetzlaw.com www.brendasgetzlaw.com mail.kspk.com www.kspk.com
 + Checking domain name(s) of existing cert... changed!
 + Domain name(s) are not matching!
 + Names in old certificate: kspk.com mail.kspk.com www.kspk.com
 + Configured names: brendasgetzlaw.com kspk.com mail.kspk.com www.brendasgetzlaw.com www.kspk.com
 + Forcing renew.
 + Checking expire date of existing cert...
 + Valid till Apr 19 02:58:53 2023 GMT (Longer than 30 days). Ignoring because renew was forced!
 + Signing domains...
 + Generating private key...
 + Generating signing request...
 + Requesting new certificate order from CA...
 + Received 5 authorizations URLs from the CA
 + Handling authorization for brendasgetzlaw.com
 + Handling authorization for kspk.com
 + Handling authorization for mail.kspk.com
 + Handling authorization for www.kspk.com
 + Handling authorization for www.brendasgetzlaw.com
 + 5 pending challenge(s)
 + Deploying challenge tokens...
 + Responding to challenge for brendasgetzlaw.com authorization...
 + Cleaning challenge tokens...
 + Challenge validation has failed
ERROR: Challenge is invalid! (returned: invalid) (result: {
  "type": "http-01",
  "status": "invalid",
  "error": {
    "type": "urn:ietf:params:acme:error:unauthorized",
    "detail": "public ip: Invalid response from http://brendasgetzlaw.com/.well-known/acme-challenge/W-VWKmh6QU-tj_ugJXchnTEqbQbJPSjLDRBQnydQqUM: 403",
    "status": 403
  },
  "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/196431784397/eK-OBA",
  "token": "W-VWKmh6QU-tj_ugJXchnTEqbQbJPSjLDRBQnydQqUM",
  "validationRecord": [
    {
      "url": "http://brendasgetzlaw.com/.well-known/acme-challenge/W-VWKmh6QU-tj_ugJXchnTEqbQbJPSjLDRBQnydQqUM",
      "hostname": "brendasgetzlaw.com",
      "port": "80",
      "addressesResolved": [
        "public ip"
      ],
      "addressUsed": "public ip"
    }
  ],
  "validated": "2023-01-19T09:08:40Z"
})
[root@www ~]#
Kinda like further up the list here when I tried it a few days ago I am wondering if I need to give the DNS a new acme challenge??