TLS-SNI-01 challenge not working
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| python-letsencrypt-apache (Ubuntu) |
Expired
|
Undecided
|
Unassigned | ||
Bug Description
Since January, this package doesn't work as in the past
In case of a new generation of a SSL certificate for a new domain:
sudo letsencrypt --apache -d newdomain.com -d www.newdomain.com
it fails because the preferred-
https:/
), and an error message upon a request is thrown:
"Client does not support any combination of challenges that will satisfy the CA".
This error is similar to the one described here for certbot:
https:/
Is there any chance to have soon available the updated package for letsencrypt or certbot upon update/upgrade on repos, which will allow to run smoothly a new request without reconfiguring everything on the server? When will it be available approx.?
Checking the repo, it seems that we are still behind on the stable Ubuntu version:
https:/
| Emily Ratliff (emilyr) wrote | #1 |
| Changed in python-letsencrypt-apache (Ubuntu): | |
| status: | New → Incomplete |
| information type: | Private Security → Public |
| Launchpad Janitor (janitor) wrote | #2 |
| Changed in python-letsencrypt-apache (Ubuntu): | |
| status: | Incomplete → Expired |
Thanks for taking the time to report this bug and helping to make Ubuntu better. Since the package referred to in this bug is in universe or multiverse, it is community maintained. If you are able, I suggest coordinating with upstream and posting a debdiff for this issue. When a debdiff is available, members of the security team will review it and publish the package. See the following link for more information: https:/