Xshell 5 (Build 1332)
Copyright (c) 2002-2017 NetSarang Computer, Inc. All rights reserved.
Type `help' to learn how to use Xshell prompt.
[c:\~]$
Connecting to 54.82.232.1:22...
Connection established.
To escape to local shell, press 'Ctrl+Alt+]'.
__| __|_ )
_| ( / Amazon Linux AMI
___|\___|___|
https://aws.amazon.com/amazon-linux-ami/2017.03-release-notes/
8 package(s) needed for security, out of 8 available
Run "sudo yum update" to apply all updates.
[ec2-user@ip-172-31-47-211 ~]$ sudo yum install python27-devel git
Loaded plugins: priorities, update-motd, upgrade-helper
Package python27-devel-2.7.12-2.120.amzn1.x86_64 already installed and latest version
Resolving Dependencies
--> Running transaction check
---> Package git.x86_64 0:2.13.5-1.53.amzn1 will be installed
--> Processing Dependency: perl-Git = 2.13.5-1.53.amzn1 for package: git-2.13.5-1.53.amzn1.x86_64
--> Processing Dependency: perl(Term::ReadKey) for package: git-2.13.5-1.53.amzn1.x86_64
--> Processing Dependency: perl(Git) for package: git-2.13.5-1.53.amzn1.x86_64
--> Processing Dependency: perl(Git::I18N) for package: git-2.13.5-1.53.amzn1.x86_64
--> Processing Dependency: perl(Error) for package: git-2.13.5-1.53.amzn1.x86_64
--> Running transaction check
---> Package perl-Error.noarch 1:0.17020-2.9.amzn1 will be installed
---> Package perl-Git.noarch 0:2.13.5-1.53.amzn1 will be installed
---> Package perl-TermReadKey.x86_64 0:2.30-20.9.amzn1 will be installed
--> Finished Dependency Resolution
Dependencies Resolved
================================================================================================================================================================================================================================================================================================================================
Package Arch Version Repository Size
================================================================================================================================================================================================================================================================================================================================
Installing:
git x86_64 2.13.5-1.53.amzn1 amzn-updates 11 M
Installing for dependencies:
perl-Error noarch 1:0.17020-2.9.amzn1 amzn-main 33 k
perl-Git noarch 2.13.5-1.53.amzn1 amzn-updates 68 k
perl-TermReadKey x86_64 2.30-20.9.amzn1 amzn-main 33 k
Transaction Summary
================================================================================================================================================================================================================================================================================================================================
Install 1 Package (+3 Dependent packages)
Total download size: 12 M
Installed size: 29 M
Is this ok [y/d/N]: y
Downloading packages:
(1/4): perl-Git-2.13.5-1.53.amzn1.noarch.rpm | 68 kB 00:00:00
(2/4): perl-TermReadKey-2.30-20.9.amzn1.x86_64.rpm | 33 kB 00:00:00
(3/4): perl-Error-0.17020-2.9.amzn1.noarch.rpm | 33 kB 00:00:00
(4/4): git-2.13.5-1.53.amzn1.x86_64.rpm | 11 MB 00:00:05
--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Total 2.0 MB/s | 12 MB 00:00:05
Running transaction check
Running transaction test
Transaction test succeeded
Running transaction
Installing : 1:perl-Error-0.17020-2.9.amzn1.noarch 1/4
Installing : perl-TermReadKey-2.30-20.9.amzn1.x86_64 2/4
Installing : git-2.13.5-1.53.amzn1.x86_64 3/4
Installing : perl-Git-2.13.5-1.53.amzn1.noarch 4/4
Verifying : perl-Git-2.13.5-1.53.amzn1.noarch 1/4
Verifying : 1:perl-Error-0.17020-2.9.amzn1.noarch 2/4
Verifying : git-2.13.5-1.53.amzn1.x86_64 3/4
Verifying : perl-TermReadKey-2.30-20.9.amzn1.x86_64 4/4
Installed:
git.x86_64 0:2.13.5-1.53.amzn1
Dependency Installed:
perl-Error.noarch 1:0.17020-2.9.amzn1 perl-Git.noarch 0:2.13.5-1.53.amzn1 perl-TermReadKey.x86_64 0:2.30-20.9.amzn1
Complete!
[ec2-user@ip-172-31-47-211 ~]$ git clone https://github.com/letsencrypt/letsencrypt /opt/letsencrypt
fatal: could not create work tree dir '/opt/letsencrypt': Permission denied
[ec2-user@ip-172-31-47-211 ~]$ git clone https://github.com/letsencrypt/letsencrypt
Cloning into 'letsencrypt'...
remote: Counting objects: 49437, done.
remote: Compressing objects: 100% (91/91), done.
remote: Total 49437 (delta 42), reused 31 (delta 10), pack-reused 49336
Receiving objects: 100% (49437/49437), 15.21 MiB | 26.32 MiB/s, done.
Resolving deltas: 100% (35336/35336), done.
[ec2-user@ip-172-31-47-211 ~]$ cd letsencrypt/
[ec2-user@ip-172-31-47-211 letsencrypt]$ ./letsencrypt-auto --help
Requesting to rerun ./letsencrypt-auto with root privileges...
FATAL: Amazon Linux support is very experimental at present...
if you would like to work on improving it, please ensure you have backups
and then run this script again with the --debug flag!
Alternatively, you can install OS dependencies yourself and run this script
again with --no-bootstrap.
[ec2-user@ip-172-31-47-211 letsencrypt]$ ./certbot-auto --debug
Requesting to rerun ./certbot-auto with root privileges...
Bootstrapping dependencies for Amazon... (you can skip this with --no-bootstrap)
yum is /usr/bin/yum
Loaded plugins: priorities, update-motd, upgrade-helper
Package 1:openssl-1.0.1k-15.99.amzn1.x86_64 already installed and latest version
Package ca-certificates-2015.2.6-65.0.1.16.amzn1.noarch already installed and latest version
Package python27-2.7.12-2.120.amzn1.x86_64 already installed and latest version
Package python27-devel-2.7.12-2.120.amzn1.x86_64 already installed and latest version
Package python27-virtualenv-12.0.7-1.13.amzn1.noarch already installed and latest version
Package python27-pip-6.1.1-1.23.amzn1.noarch already installed and latest version
Resolving Dependencies
--> Running transaction check
---> Package augeas-libs.x86_64 0:1.0.0-5.7.amzn1 will be installed
---> Package gcc.noarch 0:4.8.3-3.20.amzn1 will be installed
--> Processing Dependency: gcc48 = 4.8.3 for package: gcc-4.8.3-3.20.amzn1.noarch
---> Package libffi-devel.x86_64 0:3.0.13-16.5.amzn1 will be installed
---> Package openssl-devel.x86_64 1:1.0.1k-15.99.amzn1 will be installed
--> Processing Dependency: zlib-devel(x86-64) for package: 1:openssl-devel-1.0.1k-15.99.amzn1.x86_64
--> Processing Dependency: krb5-devel(x86-64) for package: 1:openssl-devel-1.0.1k-15.99.amzn1.x86_64
---> Package python27-tools.x86_64 0:2.7.12-2.120.amzn1 will be installed
---> Package system-rpm-config.noarch 0:9.0.3-42.28.amzn1 will be installed
--> Running transaction check
---> Package gcc48.x86_64 0:4.8.3-9.111.amzn1 will be installed
--> Processing Dependency: cpp48(x86-64) = 4.8.3-9.111.amzn1 for package: gcc48-4.8.3-9.111.amzn1.x86_64
--> Processing Dependency: libgomp(x86-64) >= 4.8.3-9.111.amzn1 for package: gcc48-4.8.3-9.111.amzn1.x86_64
--> Processing Dependency: glibc-devel(x86-64) >= 2.2.90-12 for package: gcc48-4.8.3-9.111.amzn1.x86_64
--> Processing Dependency: libmpc.so.3()(64bit) for package: gcc48-4.8.3-9.111.amzn1.x86_64
--> Processing Dependency: libgomp.so.1()(64bit) for package: gcc48-4.8.3-9.111.amzn1.x86_64
--> Processing Dependency: libmpfr.so.4()(64bit) for package: gcc48-4.8.3-9.111.amzn1.x86_64
---> Package krb5-devel.x86_64 0:1.14.1-27.41.amzn1 will be installed
--> Processing Dependency: libkadm5(x86-64) = 1.14.1-27.41.amzn1 for package: krb5-devel-1.14.1-27.41.amzn1.x86_64
--> Processing Dependency: libverto-devel for package: krb5-devel-1.14.1-27.41.amzn1.x86_64
--> Processing Dependency: libcom_err-devel for package: krb5-devel-1.14.1-27.41.amzn1.x86_64
--> Processing Dependency: keyutils-libs-devel for package: krb5-devel-1.14.1-27.41.amzn1.x86_64
--> Processing Dependency: libselinux-devel for package: krb5-devel-1.14.1-27.41.amzn1.x86_64
---> Package zlib-devel.x86_64 0:1.2.8-7.18.amzn1 will be installed
--> Running transaction check
---> Package cpp48.x86_64 0:4.8.3-9.111.amzn1 will be installed
---> Package glibc-devel.x86_64 0:2.17-196.172.amzn1 will be installed
--> Processing Dependency: glibc(x86-64) = 2.17-196.172.amzn1 for package: glibc-devel-2.17-196.172.amzn1.x86_64
--> Processing Dependency: glibc-headers = 2.17-196.172.amzn1 for package: glibc-devel-2.17-196.172.amzn1.x86_64
--> Processing Dependency: glibc-headers for package: glibc-devel-2.17-196.172.amzn1.x86_64
---> Package keyutils-libs-devel.x86_64 0:1.5.8-3.12.amzn1 will be installed
---> Package libcom_err-devel.x86_64 0:1.42.12-4.40.amzn1 will be installed
---> Package libgomp.x86_64 0:4.8.3-9.111.amzn1 will be installed
---> Package libkadm5.x86_64 0:1.14.1-27.41.amzn1 will be installed
---> Package libmpc.x86_64 0:1.0.1-3.3.amzn1 will be installed
---> Package libselinux-devel.x86_64 0:2.1.10-3.22.amzn1 will be installed
--> Processing Dependency: libsepol-devel >= 2.1.5-1 for package: libselinux-devel-2.1.10-3.22.amzn1.x86_64
--> Processing Dependency: pkgconfig(libsepol) for package: libselinux-devel-2.1.10-3.22.amzn1.x86_64
---> Package libverto-devel.x86_64 0:0.2.5-4.9.amzn1 will be installed
---> Package mpfr.x86_64 0:3.1.1-4.14.amzn1 will be installed
--> Running transaction check
---> Package glibc.x86_64 0:2.17-157.170.amzn1 will be updated
--> Processing Dependency: glibc(x86-64) = 2.17-157.170.amzn1 for package: glibc-common-2.17-157.170.amzn1.x86_64
---> Package glibc.x86_64 0:2.17-196.172.amzn1 will be an update
---> Package glibc-headers.x86_64 0:2.17-196.172.amzn1 will be installed
--> Processing Dependency: kernel-headers >= 2.2.1 for package: glibc-headers-2.17-196.172.amzn1.x86_64
--> Processing Dependency: kernel-headers for package: glibc-headers-2.17-196.172.amzn1.x86_64
---> Package libsepol-devel.x86_64 0:2.1.7-3.12.amzn1 will be installed
--> Running transaction check
---> Package glibc-common.x86_64 0:2.17-157.170.amzn1 will be updated
---> Package glibc-common.x86_64 0:2.17-196.172.amzn1 will be an update
---> Package kernel-headers.x86_64 0:4.9.43-17.38.amzn1 will be installed
--> Finished Dependency Resolution
Dependencies Resolved
================================================================================================================================================================================================================================================================================================================================
Package Arch Version Repository Size
================================================================================================================================================================================================================================================================================================================================
Installing:
augeas-libs x86_64 1.0.0-5.7.amzn1 amzn-main 345 k
gcc noarch 4.8.3-3.20.amzn1 amzn-main 3.9 k
libffi-devel x86_64 3.0.13-16.5.amzn1 amzn-main 23 k
openssl-devel x86_64 1:1.0.1k-15.99.amzn1 amzn-main 1.5 M
python27-tools x86_64 2.7.12-2.120.amzn1 amzn-main 709 k
system-rpm-config noarch 9.0.3-42.28.amzn1 amzn-main 63 k
Installing for dependencies:
cpp48 x86_64 4.8.3-9.111.amzn1 amzn-main 6.7 M
gcc48 x86_64 4.8.3-9.111.amzn1 amzn-main 17 M
glibc-devel x86_64 2.17-196.172.amzn1 amzn-updates 1.1 M
glibc-headers x86_64 2.17-196.172.amzn1 amzn-updates 751 k
kernel-headers x86_64 4.9.43-17.38.amzn1 amzn-updates 1.1 M
keyutils-libs-devel x86_64 1.5.8-3.12.amzn1 amzn-main 37 k
krb5-devel x86_64 1.14.1-27.41.amzn1 amzn-main 699 k
libcom_err-devel x86_64 1.42.12-4.40.amzn1 amzn-main 35 k
libgomp x86_64 4.8.3-9.111.amzn1 amzn-main 175 k
libkadm5 x86_64 1.14.1-27.41.amzn1 amzn-main 196 k
libmpc x86_64 1.0.1-3.3.amzn1 amzn-main 53 k
libselinux-devel x86_64 2.1.10-3.22.amzn1 amzn-main 157 k
libsepol-devel x86_64 2.1.7-3.12.amzn1 amzn-main 70 k
libverto-devel x86_64 0.2.5-4.9.amzn1 amzn-main 11 k
mpfr x86_64 3.1.1-4.14.amzn1 amzn-main 237 k
zlib-devel x86_64 1.2.8-7.18.amzn1 amzn-main 53 k
Updating for dependencies:
glibc x86_64 2.17-196.172.amzn1 amzn-updates 5.8 M
glibc-common x86_64 2.17-196.172.amzn1 amzn-updates 28 M
Transaction Summary
================================================================================================================================================================================================================================================================================================================================
Install 6 Packages (+16 Dependent packages)
Upgrade ( 2 Dependent packages)
Total download size: 65 M
Is this ok [y/d/N]: y
Downloading packages:
(1/24): gcc-4.8.3-3.20.amzn1.noarch.rpm | 3.9 kB 00:00:00
(2/24): cpp48-4.8.3-9.111.amzn1.x86_64.rpm | 6.7 MB 00:00:00
(3/24): glibc-devel-2.17-196.172.amzn1.x86_64.rpm | 1.1 MB 00:00:00
(4/24): glibc-headers-2.17-196.172.amzn1.x86_64.rpm | 751 kB 00:00:00
(5/24): kernel-headers-4.9.43-17.38.amzn1.x86_64.rpm | 1.1 MB 00:00:00
(6/24): keyutils-libs-devel-1.5.8-3.12.amzn1.x86_64.rpm | 37 kB 00:00:00
(7/24): krb5-devel-1.14.1-27.41.amzn1.x86_64.rpm | 699 kB 00:00:00
(8/24): libcom_err-devel-1.42.12-4.40.amzn1.x86_64.rpm | 35 kB 00:00:00
(9/24): libffi-devel-3.0.13-16.5.amzn1.x86_64.rpm | 23 kB 00:00:00
(10/24): libgomp-4.8.3-9.111.amzn1.x86_64.rpm | 175 kB 00:00:00
(11/24): libkadm5-1.14.1-27.41.amzn1.x86_64.rpm | 196 kB 00:00:00
(12/24): libmpc-1.0.1-3.3.amzn1.x86_64.rpm | 53 kB 00:00:00
(13/24): libselinux-devel-2.1.10-3.22.amzn1.x86_64.rpm | 157 kB 00:00:00
(14/24): libsepol-devel-2.1.7-3.12.amzn1.x86_64.rpm | 70 kB 00:00:00
(15/24): libverto-devel-0.2.5-4.9.amzn1.x86_64.rpm | 11 kB 00:00:00
(16/24): mpfr-3.1.1-4.14.amzn1.x86_64.rpm | 237 kB 00:00:00
(17/24): openssl-devel-1.0.1k-15.99.amzn1.x86_64.rpm | 1.5 MB 00:00:00
(18/24): python27-tools-2.7.12-2.120.amzn1.x86_64.rpm | 709 kB 00:00:00
(19/24): system-rpm-config-9.0.3-42.28.amzn1.noarch.rpm | 63 kB 00:00:00
(20/24): zlib-devel-1.2.8-7.18.amzn1.x86_64.rpm | 53 kB 00:00:00
(21/24): augeas-libs-1.0.0-5.7.amzn1.x86_64.rpm | 345 kB 00:00:01
(22/24): glibc-common-2.17-196.172.amzn1.x86_64.rpm | 28 MB 00:00:00
(23/24): glibc-2.17-196.172.amzn1.x86_64.rpm | 5.8 MB 00:00:07
(24/24): gcc48-4.8.3-9.111.amzn1.x86_64.rpm | 17 MB 00:00:13
--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Total 4.7 MB/s | 65 MB 00:00:13
Running transaction check
Running transaction test
Transaction test succeeded
Running transaction
Updating : glibc-common-2.17-196.172.amzn1.x86_64 1/26
Updating : glibc-2.17-196.172.amzn1.x86_64 2/26
warning: /etc/nsswitch.conf created as /etc/nsswitch.conf.rpmnew
Installing : mpfr-3.1.1-4.14.amzn1.x86_64 3/26
Installing : libmpc-1.0.1-3.3.amzn1.x86_64 4/26
Installing : cpp48-4.8.3-9.111.amzn1.x86_64 5/26
Installing : libgomp-4.8.3-9.111.amzn1.x86_64 6/26
Installing : libkadm5-1.14.1-27.41.amzn1.x86_64 7/26
Installing : libcom_err-devel-1.42.12-4.40.amzn1.x86_64 8/26
Installing : libverto-devel-0.2.5-4.9.amzn1.x86_64 9/26
Installing : libsepol-devel-2.1.7-3.12.amzn1.x86_64 10/26
Installing : libselinux-devel-2.1.10-3.22.amzn1.x86_64 11/26
Installing : kernel-headers-4.9.43-17.38.amzn1.x86_64 12/26
Installing : glibc-headers-2.17-196.172.amzn1.x86_64 13/26
Installing : glibc-devel-2.17-196.172.amzn1.x86_64 14/26
Installing : gcc48-4.8.3-9.111.amzn1.x86_64 15/26
Installing : zlib-devel-1.2.8-7.18.amzn1.x86_64 16/26
Installing : keyutils-libs-devel-1.5.8-3.12.amzn1.x86_64 17/26
Installing : krb5-devel-1.14.1-27.41.amzn1.x86_64 18/26
Installing : 1:openssl-devel-1.0.1k-15.99.amzn1.x86_64 19/26
Installing : gcc-4.8.3-3.20.amzn1.noarch 20/26
Installing : augeas-libs-1.0.0-5.7.amzn1.x86_64 21/26
Installing : libffi-devel-3.0.13-16.5.amzn1.x86_64 22/26
Installing : system-rpm-config-9.0.3-42.28.amzn1.noarch 23/26
Installing : python27-tools-2.7.12-2.120.amzn1.x86_64 24/26
Cleanup : glibc-common-2.17-157.170.amzn1.x86_64 25/26
Cleanup : glibc-2.17-157.170.amzn1.x86_64 26/26
Verifying : augeas-libs-1.0.0-5.7.amzn1.x86_64 1/26
Verifying : glibc-headers-2.17-196.172.amzn1.x86_64 2/26
Verifying : python27-tools-2.7.12-2.120.amzn1.x86_64 3/26
Verifying : libgomp-4.8.3-9.111.amzn1.x86_64 4/26
Verifying : mpfr-3.1.1-4.14.amzn1.x86_64 5/26
Verifying : system-rpm-config-9.0.3-42.28.amzn1.noarch 6/26
Verifying : libselinux-devel-2.1.10-3.22.amzn1.x86_64 7/26
Verifying : keyutils-libs-devel-1.5.8-3.12.amzn1.x86_64 8/26
Verifying : zlib-devel-1.2.8-7.18.amzn1.x86_64 9/26
Verifying : krb5-devel-1.14.1-27.41.amzn1.x86_64 10/26
Verifying : libffi-devel-3.0.13-16.5.amzn1.x86_64 11/26
Verifying : kernel-headers-4.9.43-17.38.amzn1.x86_64 12/26
Verifying : glibc-2.17-196.172.amzn1.x86_64 13/26
Verifying : glibc-common-2.17-196.172.amzn1.x86_64 14/26
Verifying : gcc48-4.8.3-9.111.amzn1.x86_64 15/26
Verifying : glibc-devel-2.17-196.172.amzn1.x86_64 16/26
Verifying : 1:openssl-devel-1.0.1k-15.99.amzn1.x86_64 17/26
Verifying : libmpc-1.0.1-3.3.amzn1.x86_64 18/26
Verifying : libkadm5-1.14.1-27.41.amzn1.x86_64 19/26
Verifying : libsepol-devel-2.1.7-3.12.amzn1.x86_64 20/26
Verifying : libverto-devel-0.2.5-4.9.amzn1.x86_64 21/26
Verifying : libcom_err-devel-1.42.12-4.40.amzn1.x86_64 22/26
Verifying : gcc-4.8.3-3.20.amzn1.noarch 23/26
Verifying : cpp48-4.8.3-9.111.amzn1.x86_64 24/26
Verifying : glibc-2.17-157.170.amzn1.x86_64 25/26
Verifying : glibc-common-2.17-157.170.amzn1.x86_64 26/26
Installed:
augeas-libs.x86_64 0:1.0.0-5.7.amzn1 gcc.noarch 0:4.8.3-3.20.amzn1 libffi-devel.x86_64 0:3.0.13-16.5.amzn1 openssl-devel.x86_64 1:1.0.1k-15.99.amzn1 python27-tools.x86_64 0:2.7.12-2.120.amzn1 system-rpm-config.noarch 0:9.0.3-42.28.amzn1
Dependency Installed:
cpp48.x86_64 0:4.8.3-9.111.amzn1 gcc48.x86_64 0:4.8.3-9.111.amzn1 glibc-devel.x86_64 0:2.17-196.172.amzn1 glibc-headers.x86_64 0:2.17-196.172.amzn1 kernel-headers.x86_64 0:4.9.43-17.38.amzn1 keyutils-libs-devel.x86_64 0:1.5.8-3.12.amzn1 krb5-devel.x86_64 0:1.14.1-27.41.amzn1
libcom_err-devel.x86_64 0:1.42.12-4.40.amzn1 libgomp.x86_64 0:4.8.3-9.111.amzn1 libkadm5.x86_64 0:1.14.1-27.41.amzn1 libmpc.x86_64 0:1.0.1-3.3.amzn1 libselinux-devel.x86_64 0:2.1.10-3.22.amzn1 libsepol-devel.x86_64 0:2.1.7-3.12.amzn1 libverto-devel.x86_64 0:0.2.5-4.9.amzn1
mpfr.x86_64 0:3.1.1-4.14.amzn1 zlib-devel.x86_64 0:1.2.8-7.18.amzn1
Dependency Updated:
glibc.x86_64 0:2.17-196.172.amzn1 glibc-common.x86_64 0:2.17-196.172.amzn1
Complete!
Upgrading certbot-auto 0.18.0 to 0.18.1...
Replacing certbot-auto...
Creating virtual environment...
Installing Python packages...
Installation succeeded.
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Failed to find executable apachectl in expanded PATH: /sbin:/bin:/usr/sbin:/usr/bin:/usr/local/bin:/usr/local/sbin
Certbot doesn't know how to automatically configure the web server on this system. However, it can still get a certificate for you. Please run "certbot-auto certonly" to do so. You'll need to manually configure your web server to use the resulting certificate.
[ec2-user@ip-172-31-47-211 letsencrypt]$ ./certbot-auto certonly ??manual
Requesting to rerun ./certbot-auto with root privileges...
usage:
certbot-auto [SUBCOMMAND] [options] [-d DOMAIN] [-d DOMAIN] ...
Certbot can obtain and install HTTPS/TLS/SSL certificates. By default,
it will attempt to use a webserver both for obtaining and installing the
certificate.
certbot: error: unrecognized arguments: ??manual
참고 manual ===================================================================================================
[ec2-user@ip-172-31-47-211 letsencrypt]$ ./certbot-auto certonly -manual
Requesting to rerun ./certbot-auto with root privileges...
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Failed to find executable apachectl in expanded PATH: /sbin:/bin:/usr/sbin:/usr/bin:/usr/local/bin:/usr/local/sbin
How would you like to authenticate with the ACME CA?
-------------------------------------------------------------------------------
1: Spin up a temporary webserver (standalone)
2: Place files in webroot directory (webroot)
-------------------------------------------------------------------------------
Select the appropriate number [1-2] then [enter] (press 'c' to cancel): 1
Plugins selected: Authenticator standalone, Installer None
There seem to be problems with that address. Enter email address (used for
urgent renewal and security notices)
If you really want to skip this, you can run the client with
--register-unsafely-without-email but make sure you then backup your account key
from /etc/letsencrypt/accounts
(Enter 'c' to cancel):
Invalid email address: .
Enter email address (used for urgent renewal and security notices)
If you really want to skip this, you can run the client with
--register-unsafely-without-email but make sure you then backup your account key
from /etc/letsencrypt/accounts
(Enter 'c' to cancel):
Invalid email address: .
Enter email address (used for urgent renewal and security notices)
If you really want to skip this, you can run the client with
--register-unsafely-without-email but make sure you then backup your account key
from /etc/letsencrypt/accounts
(Enter 'c' to cancel): build.blackpearl@gmail.com
-------------------------------------------------------------------------------
Please read the Terms of Service at
https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf. You must agree
in order to register with the ACME server at
https://acme-v01.api.letsencrypt.org/directory
-------------------------------------------------------------------------------
(A)gree/(C)ancel: a
-------------------------------------------------------------------------------
Would you be willing to share your email address with the Electronic Frontier
Foundation, a founding partner of the Let's Encrypt project and the non-profit
organization that develops Certbot? We'd like to send you email about EFF and
our work to encrypt the web, protect its users and defend digital rights.
-------------------------------------------------------------------------------
(Y)es/(N)o: y
Please enter in your domain name(s) (comma and/or space separated) (Enter 'c'
to cancel): game.teambp.net
Obtaining a new certificate
Performing the following challenges:
tls-sni-01 challenge for game.teambp.net
Waiting for verification...
Cleaning up challenges
Failed authorization procedure. game.teambp.net (tls-sni-01): urn:acme:error:connection :: The server could not connect to the client to verify the domain :: Timeout
IMPORTANT NOTES:
- The following errors were reported by the server:
Domain: game.teambp.net
Type: connection
Detail: Timeout
To fix these errors, please make sure that your domain name was
entered correctly and the DNS A/AAAA record(s) for that domain
contain(s) the right IP address. Additionally, please check that
your computer has a publicly routable IP address and that no
firewalls are preventing the server from communicating with the
client. If you're using the webroot plugin, you should also verify
that you are serving files from the webroot path you provided.
- Your account credentials have been saved in your Certbot
configuration directory at /etc/letsencrypt. You should make a
secure backup of this folder now. This configuration directory will
also contain certificates and private keys obtained by Certbot so
making regular backups of this folder is ideal.
참고 manual 끝 ===================================================================================================
[ec2-user@ip-172-31-47-211 letsencrypt]$ sudo yum install nginx -y
Loaded plugins: priorities, update-motd, upgrade-helper
amzn-main | 2.1 kB 00:00:00
amzn-updates | 2.3 kB 00:00:00
Resolving Dependencies
--> Running transaction check
---> Package nginx.x86_64 1:1.10.3-1.31.amzn1 will be installed
--> Processing Dependency: libprofiler.so.0()(64bit) for package: 1:nginx-1.10.3-1.31.amzn1.x86_64
--> Running transaction check
---> Package gperftools-libs.x86_64 0:2.0-11.5.amzn1 will be installed
--> Processing Dependency: libunwind.so.8()(64bit) for package: gperftools-libs-2.0-11.5.amzn1.x86_64
--> Running transaction check
---> Package libunwind.x86_64 0:1.1-10.8.amzn1 will be installed
--> Finished Dependency Resolution
Dependencies Resolved
================================================================================================================================================================================================================================================================================================================================
Package Arch Version Repository Size
================================================================================================================================================================================================================================================================================================================================
Installing:
nginx x86_64 1:1.10.3-1.31.amzn1 amzn-updates 535 k
Installing for dependencies:
gperftools-libs x86_64 2.0-11.5.amzn1 amzn-main 570 k
libunwind x86_64 1.1-10.8.amzn1 amzn-main 72 k
Transaction Summary
================================================================================================================================================================================================================================================================================================================================
Install 1 Package (+2 Dependent packages)
Total download size: 1.1 M
Installed size: 2.8 M
Downloading packages:
(1/3): libunwind-1.1-10.8.amzn1.x86_64.rpm | 72 kB 00:00:00
(2/3): gperftools-libs-2.0-11.5.amzn1.x86_64.rpm | 570 kB 00:00:00
(3/3): nginx-1.10.3-1.31.amzn1.x86_64.rpm | 535 kB 00:00:00
--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Total 3.6 MB/s | 1.1 MB 00:00:00
Running transaction check
Running transaction test
Transaction test succeeded
Running transaction
Installing : libunwind-1.1-10.8.amzn1.x86_64 1/3
Installing : gperftools-libs-2.0-11.5.amzn1.x86_64 2/3
Installing : 1:nginx-1.10.3-1.31.amzn1.x86_64 3/3
Verifying : libunwind-1.1-10.8.amzn1.x86_64 1/3
Verifying : 1:nginx-1.10.3-1.31.amzn1.x86_64 2/3
Verifying : gperftools-libs-2.0-11.5.amzn1.x86_64 3/3
Installed:
nginx.x86_64 1:1.10.3-1.31.amzn1
Dependency Installed:
gperftools-libs.x86_64 0:2.0-11.5.amzn1 libunwind.x86_64 0:1.1-10.8.amzn1
Complete!
[ec2-user@ip-172-31-47-211 letsencrypt]$ sudo service nginx start
Starting nginx: [ OK ]
[ec2-user@ip-172-31-47-211 letsencrypt]$ ./letsencrypt-auto certonly --standalone --email build.blackpearl@gmail.com -d game.teambp.net
Requesting to rerun ./letsencrypt-auto with root privileges...
Upgrading certbot-auto 0.18.0 to 0.18.1...
Replacing certbot-auto...
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator standalone, Installer None
Obtaining a new certificate
Performing the following challenges:
tls-sni-01 challenge for game.teambp.net
Waiting for verification...
Cleaning up challenges
Failed authorization procedure. game.teambp.net (tls-sni-01): urn:acme:error:connection :: The server could not connect to the client to verify the domain :: Timeout
IMPORTANT NOTES:
- The following errors were reported by the server:
Domain: game.teambp.net
Type: connection
Detail: Timeout
To fix these errors, please make sure that your domain name was
entered correctly and the DNS A/AAAA record(s) for that domain
contain(s) the right IP address. Additionally, please check that
your computer has a publicly routable IP address and that no
firewalls are preventing the server from communicating with the
client. If you're using the webroot plugin, you should also verify
that you are serving files from the webroot path you provided.
[ec2-user@ip-172-31-47-211 letsencrypt]$ ./letsencrypt-auto certonly --standalone --email build.blackpearl@gmail.com -d game.teambp.net
Requesting to rerun ./letsencrypt-auto with root privileges...
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator standalone, Installer None
Obtaining a new certificate
Performing the following challenges:
tls-sni-01 challenge for game.teambp.net
Waiting for verification...
Cleaning up challenges
IMPORTANT NOTES:
- Congratulations! Your certificate and chain have been saved at:
/etc/letsencrypt/live/game.teambp.net/fullchain.pem
Your key file has been saved at:
/etc/letsencrypt/live/game.teambp.net/privkey.pem
Your cert will expire on 2017-12-13. To obtain a new or tweaked
version of this certificate in the future, simply run
letsencrypt-auto again. To non-interactively renew *all* of your
certificates, run "letsencrypt-auto renew"
- If you like Certbot, please consider supporting our work by:
Donating to ISRG / Let's Encrypt: https://letsencrypt.org/donate
Donating to EFF: https://eff.org/donate-le
[ec2-user@ip-172-31-47-211 letsencrypt]$ sudo su -
[root@ip-172-31-47-211 ~]# cd /etc/letsencrypt/
[root@ip-172-31-47-211 ]# ls /etc/letsencrypt/archive/game.teambp.net/ -al
total 24
drwxr-xr-x 2 root root 4096 Sep 14 10:04 .
drwx------ 3 root root 4096 Sep 14 10:04 ..
-rw-r--r-- 1 root root 1797 Sep 14 10:04 cert1.pem
-rw-r--r-- 1 root root 1647 Sep 14 10:04 chain1.pem
-rw-r--r-- 1 root root 3444 Sep 14 10:04 fullchain1.pem
-rw-r--r-- 1 root root 1704 Sep 14 10:04 privkey1.pem
[root@ip-172-31-47-211 ec2-user]# chown -R ec2-user:ec2-user /etc/letsencrypt/archive/
