I had the same issue with a few domains, the fix above worked, but I wonder what will happen after the 30th 
LetsEncrypt - SSL certificate is not valid
- fulltilt
- Thread is marked as Resolved.
-
-
I had the same issue with a few domains, the fix above worked, but I wonder what will happen after the 30th
it could be a funny day ... also because of outdated devices & software from the customer side
-
-
i think we'll get trouble. Debian test with time in the future:
# service ntp stop
# date --set="2 OCT 2021 18:00:00"
# openssl verify -CAfile fullchain14.pem -purpose sslserver cert14.pem
O = Digital Signature Trust Co., CN = DST Root CA X3
error 10 at 3 depth lookup: certificate has expired
error cert14.pem: verification failed
# service ntp start
# openssl verify -CAfile fullchain14.pem -purpose sslserver cert14.pem
cert14.pem: OK
maybe
sub validateCertificate in
/var/www/imscp/engine/PerlLib/iMSCP/OpenSSL.pm
should be disabled ?
-
Display Morei think we'll get trouble. Debian test with time in the future:
maybe
sub validateCertificate in
/var/www/imscp/engine/PerlLib/iMSCP/OpenSSL.pm
should be disabled ?
doesn’t sound good ...
-
-
i think we'll get trouble. Debian test with time in the future:
I have tested this but I have no idea whether it is meaningful ...
maybe setting ISRG Root X1 as preferred in the plugin?
some more details
-
-
-
maybe
sub validateCertificate in
/var/www/imscp/engine/PerlLib/iMSCP/OpenSSL.pm
should be disabled ?
maybe disable the LE cronjobs if problems occur - should avoid deleting of the apache vhost-ssl.conf files ...
Code- nano /etc/cron.d/imscp
- # imscp [Plugin::LetsEncrypt::pending] entry BEGIN
- #@hourly root /usr/bin/perl /var/www/imscp/gui/plugins/LetsEncrypt/cron/pending.pl > /dev/null 2>&1
- # imscp [Plugin::LetsEncrypt::pending] entry ENDING
- # imscp [Plugin::LetsEncrypt::renew] entry BEGIN
- #@daily root /usr/bin/perl /var/www/imscp/gui/plugins/LetsEncrypt/cron/renew.pl > /dev/null 2>&1
- # imscp [Plugin::LetsEncrypt::renew] entry ENDING
-