我尝试使用本指南配置 SSL: https://www.digitalocean.com/community/tutorials/how-to-secure-apache-with-let-s-encrypt-on-ubuntu-22-04
但我收到这个错误:
serv_ivan@964889-cd87180:~$ sudo certbot --apache
[sudo] password for serv_ivan:
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Which names would you like to activate HTTPS for?
1: vardidze.ru
2: www.vardidze.ru
Select the appropriate numbers separated by commas and/or spaces, or leave input
blank to select all options shown (Enter 'c' to cancel):
Requesting a certificate for vardidze.ru and www.vardidze.ru
Certbot failed to authenticate some domains (authenticator: apache). The Certificate Authority reported these problems:
Domain: vardidze.ru
Type: unauthorized
Detail: 94.228.120.106: Invalid response from http://vardidze.ru/.well-known/acme-challenge/3_vZwseS0tgfCsIJYvlU91atg-lEkdzvQZ58W-rJH98: 403
Hint: The Certificate Authority failed to verify the temporary Apache configuration changes made by Certbot. Ensure that the listed domains point to this Apache server and that it is accessible from the internet.
Some challenges have failed.
Ask for help or search for solutions at https://community.letsencrypt.org. See the logfile /var/log/letsencrypt/letsencrypt.log or re-run Certbot with -v for more details.
虽然我的域名可用:www.vardidze.ru
请帮帮我。
答案1
您似乎选择了“手动模式”来向 LetsEncrypt 软件请求证书Certbot
,并表明您希望通过质询来证明您对域名的所有权http
,如“手动”部分的前四段所述此 Certbot 文档页面
http 质询要求 Web 服务器的所有者在 Web 服务器上放置一个文件以供 Certbot 检索。文件的名称和内容由 Certbot 给出,并且对于 SSL 证书请求来说是唯一的。如果 Certbot 可以检索该文件的内容,则证明您拥有该 Web 服务器并有权接收该证书。
当 Certbot 尝试从您的 Web 服务器检索文件时,它收到 403 错误。将文件及其内容添加到您的 Web 服务器并要求 Certbot 重试。或者,如果您更愿意使用dns
质询(您将 TXT 记录添加到您的 DNS 中vardidze.ru
),请使用本答案前面的文档页面中提到的命令行选项向 Certbot 指示这一点。