#3484: osgeo6 not able to request a cert
----------------------+---------------------------
Reporter: robe | Owner: sac-tickets@…
Type: task | Status: new
Priority: normal | Milestone: Unplanned
Component: SysAdmin | Keywords:
----------------------+---------------------------
Seems port 80 is not accessible.
Also we still have some invalid certs that should be removed
namely osgeo6.osgeo.osuosl.org, staging.lists.osgeo.org,
lists.staging.osgeo.org
--
Ticket URL: <Making sure you're not a bot!;
OSGeo <Gter - OSGeo;
OSGeo committee and general foundation issue tracker.
#3484: lists.osgeo.org / mail.osgeo.org not able to request a cert
----------------------+----------------------------
Reporter: robe | Owner: sac-tickets@…
Type: task | Status: new
Priority: normal | Milestone: Unplanned
Component: SysAdmin | Resolution:
Keywords: |
----------------------+----------------------------
Changes (by robe):
* summary: osgeo6 not able to request a cert => lists.osgeo.org /
mail.osgeo.org not able to request a cert
--
Ticket URL: <Making sure you're not a bot!;
OSGeo <Gter - OSGeo;
OSGeo committee and general foundation issue tracker.
#3484: lists.osgeo.org / mail.osgeo.org not able to request a cert
----------------------+----------------------------
Reporter: robe | Owner: sac-tickets@…
Type: task | Status: new
Priority: normal | Milestone: Unplanned
Component: SysAdmin | Resolution:
Keywords: |
----------------------+----------------------------
Comment (by robe):
I've removed the staging.lists.osgeo.org and lists.staging.osgeo.org
and changed nginx on osgeo9 to only handle the web.osgeo9.osgeo.org ip
(140.211.15.13).
But I wonder for this not sure the issue. I see clamav is also broken.
--
Ticket URL: <Making sure you're not a bot!;
OSGeo <Gter - OSGeo;
OSGeo committee and general foundation issue tracker.
#3484: lists.osgeo.org / mail.osgeo.org not able to request a cert
----------------------+----------------------------
Reporter: robe | Owner: sac-tickets@…
Type: task | Status: new
Priority: normal | Milestone: Unplanned
Component: SysAdmin | Resolution:
Keywords: |
----------------------+----------------------------
Comment (by robe):
I manually renewed for now with
certbot certonly #choosing apache plugin
I suspect it's maybe the network forward doesn't quite behave correctly so
maybe is not properly forwarding traffic in.
I can telnet <private ip> 80 fine so the server is definitely listening
--
Ticket URL: <Making sure you're not a bot!;
OSGeo <Gter - OSGeo;
OSGeo committee and general foundation issue tracker.
#3484: lists.osgeo.org / mail.osgeo.org not able to request a cert
----------------------+----------------------------
Reporter: robe | Owner: sac-tickets@…
Type: task | Status: new
Priority: normal | Milestone: Unplanned
Component: SysAdmin | Resolution:
Keywords: |
----------------------+----------------------------
Comment (by robe):
I deleted the mail2.osgeo.org cert with below on osgeo9 mail container
{{{
certbot delete
}}}
--
Ticket URL: <Making sure you're not a bot!;
OSGeo <Gter - OSGeo;
OSGeo committee and general foundation issue tracker.
#3484: lists.osgeo.org / mail.osgeo.org not able to request a cert
----------------------+------------------------------------------------
Reporter: robe | Owner: sac-tickets@…
Type: task | Status: closed
Priority: normal | Milestone: Sysadmin Contract 2025-IV (vicky)
Component: SysAdmin | Resolution: fixed
Keywords: |
----------------------+------------------------------------------------
Changes (by cvvergara):
* milestone: Unplanned => Sysadmin Contract 2025-IV (vicky)
* resolution: => fixed
* status: new => closed
Comment:
We do not have a mail2, fixed the name on staging and master.
--
Ticket URL: <Making sure you're not a bot!;
OSGeo <Gter - OSGeo;
OSGeo committee and general foundation issue tracker.