Plus de clé sec_error_expired_certificate

Bonjour,
Depuis ce matin, j’ai ceci dans mon navigateur…

uses an invalid security certificate.
The certificate expired on 24/01/2017 07:52.
The current time is 24/01/2017 10:44. (Error code: sec_error_expired_certificate)

Or le package let’s encrypt est activé et je pensais que cela renouvelait automatiquement…
Je sais me connecté en ssh mais que dois je faire ? supprimer le packet let’s encrypt et le reinstaller ?

merci

======
Je rajoute quelque informations, voici ce que j’ai quand j’essaie de lancé le cron tab a la main (renewal)

An error occured, an email was sent.
Here is the log of what happened
Consider also checking /var/log/letsencrypt/


Saving debug log to /var/log/letsencrypt/letsencrypt.log
Renewing an existing certificate
Performing the following challenges:
http-01 challenge for mydom.com
Using the webroot path /tmp/letsencrypt-auto for all unmatched domains.
Waiting for verification…
Cleaning up challenges
Failed authorization procedure. mydom.com (http-01): urn:acme:error:connection :: The server could not connect to the client to verify the domain :: Could not connect to mydom.com
IMPORTANT NOTES:

  • The following errors were reported by the server:

    Domain: mydom.com
    Type: connection
    Detail: Could not connect to mydom.com

    To fix these errors, please make sure that your domain name was
    entered correctly and the DNS A record(s) for that domain
    contain(s) the right IP address. Additionally, please check that
    your computer has a publicly routable IP address and that no
    firewalls are preventing the server from communicating with the
    client. If you’re using the webroot plugin, you should also verify
    that you are serving files from the webroot path you provided.

Une idée de ce que dois faire ?
merci

Bon, j’ai trouvé :-D.
En fait, pour une raison que j’ignore, le script cron utilise le port 80 or le port 80 est bloqué chez moi… (Dans ma box,il est désactivé)…
Y a t il un moyen de passer par le 443 (ssh) ??

merci

1 Like

De ce que j’en lis non, ou alors par DNS (ce qui n’est pas géré par l’application) https://serverfault.com/questions/788220/lets-encrypt-certbot-validation-over-https