Welcome to Centmin Mod Community
Become a Member

Beta Branch add LETSENCRYPT_DETECT variable to control addons/acmetool.sh detecti…

Discussion in 'Centmin Mod Github Commits' started by eva2000, Aug 30, 2016.

  1. eva2000

    eva2000 Administrator Staff Member

    53,191
    12,113
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +18,649
    Local Time:
    4:42 PM
    Nginx 1.27.x
    MariaDB 10.x/11.4+
    add LETSENCRYPT_DETECT variable to control addons/acmetool.sh detection & integration

    in 123.09beta01, add LETSENCRYPT_DETECT variable to control Letsencrypt integration via addons/acmetool.sh auto detection in centmin.sh menu option 2, 22, and /usr/bin/nv nginx vhost generators. You can control whether or not to enable or disable integration detection in these menu options using persistent config file which you can create if it doesn't exist at /etc/centminmod/custom_config.inc.

    Currently, defaults to LETSENCRYPT_DETECT='n' to disable detection integration support of addons/acmetool.sh during beta testing phase Letsencrypt - Official acmetool.sh testing thread for Centmin Mod 123.09beta01 | Centmin Mod Community so that beta testers only can enable it for beta testing.

    You can enable addons/acmetool.sh integration detection by setting LETSENCRYPT_DETECT='y' in persistent config file /etc/centminmod/custom_config.inc.

    Continue reading...


    123.09beta01 branch
     
  2. eva2000

    eva2000 Administrator Staff Member

    53,191
    12,113
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +18,649
    Local Time:
    4:42 PM
    Nginx 1.27.x
    MariaDB 10.x/11.4+
    no no.. centmin.sh option 22 and 2 are separate
    • centmin.sh menu option 22 for wordpress + nginx vhost
    • centmin.sh menu option 2 for normal nginx vhost
    enabling LETSENCRYPT_DETECT='y', will enable letsencrypt tools/acmetool.sh detection routines in both centmin.sh menu option 2 and 22 respectively - meaning they will prompt for letsencrypt specific questions.
     
  3. elargento

    elargento Member

    352
    17
    18
    Jan 4, 2016
    Ratings:
    +44
    Local Time:
    3:42 AM
    10
    Finally was able to install it before read your post. Thank you for your patience. :nailbiting:
     
  4. rc112

    rc112 Member

    126
    14
    18
    Sep 22, 2017
    Ratings:
    +15
    Local Time:
    2:42 PM
    @eva2000 I have it in my custom file but it prompt me
    Code:
    [ LETSENCRYPT_DETECT is not enabled ]
    Ignore this message if you do not want HTTPS based web site otherwise
    read below carefully.
    Here is the file
    Code:
    ZONEINFO=Asia/Taipei  # Set Timezone
    LETSENCRYPT_DETECT='y' # Use acmetool.sh
    ZOPCACHEDFT='y'
    PHP_VERSION='7.1.15'
    NGINX_IPV='y'
    PHP_PGO='y'  # Use PHP 7.x with Profile Guide Optimizations (PGO)
    NGXDYNAMIC_BROTLI='y'
    NGINX_LIBBROTLI='y'
    CLOUDFLARE_ZLIBPHP='y' # use Cloudflare optimised zlib fork for PHP-FPM zlib instead of system zlib
    CLOUDFLARE_PATCHSSL='y'   # set 'y' to implement Cloudflare's chacha20 patch  [https://github.com/cloudflare/sslconfig](https://github.com/cloudflare/sslconfig)
    NGINX_DYNAMICTLS='y'    # set 'y' and recompile nginx  [https://blog.cloudflare.com/optimizing-tls-over-tcp-to-reduce-latency/](https://blog.cloudflare.com/optimizing-tls-over-tcp-to-reduce-latency/)
    OPENSSLECDSA_PATCH='y' # https://community.centminmod.com/posts/57725/
    OPENSSLECDHX_PATCH='y' # https://community.centminmod.com/posts/57726/
    Code:
    [22:37][root@centmin ~]# cat /etc/centminmod/acmetool-config.ini
    LETSENCRYPT_DETECT='y' # Use acmetool.sh
    # options for KEYLENGTH
    # 2048, 3072, 4096, 8192, ec-256, ec-384
    KEYLENGTH='ec-256' #ECC 256 bit ECDSA SSL
    #PUSHALERT='n'
    #pushover_email=''
     
  5. eva2000

    eva2000 Administrator Staff Member

    53,191
    12,113
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +18,649
    Local Time:
    4:42 PM
    Nginx 1.27.x
    MariaDB 10.x/11.4+
    wonder if it's character set issues again try converting the files to unix format using these 2 commands
    Code (Text):
    dos2unix /etc/centminmod/acmetool-config.ini
    dos2unix /etc/centminmod/custom_config.inc
    
     
  6. rc112

    rc112 Member

    126
    14
    18
    Sep 22, 2017
    Ratings:
    +15
    Local Time:
    2:42 PM
    @eva2000 I tried the command above and ran option 22 but still prompt me with self-signed SSL. I got the problem ever since having custom config in place. Should I recompile or anything to take effect? Thanks.
     
  7. rc112

    rc112 Member

    126
    14
    18
    Sep 22, 2017
    Ratings:
    +15
    Local Time:
    2:42 PM
    @eva2000 Problem solved. It works after running option 4 to recompile. Thank you so much for you support.
     
  8. eva2000

    eva2000 Administrator Staff Member

    53,191
    12,113
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +18,649
    Local Time:
    4:42 PM
    Nginx 1.27.x
    MariaDB 10.x/11.4+
    oh that would make sense if nginx failed to compile the first time round sort of

    but if nginx already working previously, it should cause it to ignore LETSENCRYPT_DETECT='y' in /etc/centminmod/custom_config.inc
     
  9. hnit

    hnit New Member

    24
    4
    3
    Apr 12, 2017
    Ratings:
    +4
    Local Time:
    12:12 PM
    Hi eva, been a while since I logged in here. I wanted to give centmin another try after I messed up last time.
    I did a fresh beta install last night using one-liner on an aws machine.
    For some reason, the file doesn't exist for me.

    upload_2018-5-4_12-6-14.png

    What should I do here now?
    create a file and add LETSENCRYPT_DETECT='y' to it?

    I want to use option 22 for wordpress vhost

    Regards
    hnit
     
  10. eva2000

    eva2000 Administrator Staff Member

    53,191
    12,113
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +18,649
    Local Time:
    4:42 PM
    Nginx 1.27.x
    MariaDB 10.x/11.4+
  11. hnit

    hnit New Member

    24
    4
    3
    Apr 12, 2017
    Ratings:
    +4
    Local Time:
    12:12 PM
    Thanks for the command shortcut. I figured out the creating part just now too.