[coonatea@centos7 etc]$ sudo certbot --dry-run certonly -d www.323.idv.tw -d dev.323.idv.tw
Saving debug log to /var/log/letsencrypt/letsencrypt.log
How would you like to authenticate with the ACME CA?
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
1: Apache Web Server plugin (apache)
2: Spin up a temporary webserver (standalone)
3: Place files in webroot directory (webroot)
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Select the appropriate number [1-3] then [enter] (press 'c' to cancel): 2
Plugins selected: Authenticator standalone, Installer None
Starting new HTTPS connection (1): acme-staging-v02.api.letsencrypt.org
Simulating a certificate request for www.323.idv.tw and dev.323.idv.tw
Performing the following challenges:
http-01 challenge for dev.323.idv.tw
http-01 challenge for www.323.idv.tw
Waiting for verification...
Cleaning up challenges
IMPORTANT NOTES:
- The dry run was successful.
# sudo service httpd stop
# sudo certbot --dry-run certonly -d www.koonatea.com -d dev.koonatea.com
Error while running apachectl configtest.
AH00526: Syntax error on line 212 of /etc/httpd/conf.d/ssl.conf:
SSLCertificateFile: file '/etc/letsencrypt/live/www.koonatea.com/cert.pem' does not exist or is empty
myarttw.net 20210918到期 已設定不續約
myarttw.net 202206到期 已設定不續約
如果您的網域註冊商是 Google Domains,請改為參閱透過 Google Domains 管理續約事宜一節。
-
在您的 Google 管理控制台 (admin.google.com) 中...
-
依序前往 [帳單] > [訂閱授權]。
- 按一下您的網域註冊訂閱。
您會看到註冊網域的續約費用和到期/續約日期。
- 按一下「續約選項」旁邊的 [變更續約設定]。
- 選擇下列其中一個選項:
- 如要在實際續約日期前 7 天自動為您的網域續約,請選取 [自動為我的帳戶續約]。下個月初,系統就會透過您的主要付款方式向您收取續約費用。您可以繼續享有各項 Google 服務。
- 如要讓註冊網域在續約日到期,並讓系統將您的 Google 服務停權,請選取 [在我的約期結束時取消服務]。
重要事項:如果您改變主意,則必須在停權日的 7 天之前,改為選取 [自動為我的帳戶續約],才能繼續保留網域。
- 如果您需要變更續約的付款資料,請參閱更新信用卡資料,並完成文中的步驟。
https://admin.google.com/ac/billing/subscriptions
centos 7安裝snapd
sudo yum install epel-release sudo yum update sudo yum install snapd sudo systemctl enable --now snapd.socket sudo ln -s /var/lib/snapd/snap /snap systemctl enable snapd.service systemctl start snapd.service
https://kafeiou.pw/2021/02/17/3008/
Install certbot
# snap install certbot --classic
# service httpd stop
# certbot renew -v
-------------------------------------------------------------
# sudo yum remove certbot
方式2:如果是使用腳本指令
- 如果有使用
cron排程,必須先刪除 - 刪除此目錄下的腳本檔
sudo rm /usr/local/bin/certbot-auto
如果你的目錄不一樣請自行調整 - 刪除
certbot-auto安裝憑證時建立的資料目錄
sudo rm -rf /opt/eff.org
這樣會刪除/opt目錄下的eff.og目錄
資料來源:https://certbot.eff.org/docs/uninstall.html
http://blog.tonycube.com/2021/02/certbot-snapd.html
Delete ssl Domain
# certbot delete --cert-name MyDomain
Add New Domain for ssl
# certbot --apache -d greencom.com.tw -d www.greencom.com.tw
DNS6 How to fix hung_task_timeout_secs and blocked for more than 120 seconds problem nano /etc/sysctl.conf vm.dirty_background_ratio = 5
vm.dirty_ratio = 10 解決辦法:原設定值 120 > 0
按照告警裡的提示將該提醒disable
echo 0 > /proc/sys/kernel/hung_task_timeout_secs
# Example of job definition: # .---------------- minute (0 - 59) # | .------------- hour (0 - 23) # | | .---------- day of month (1 - 31) # | | | .------- month (1 - 12) OR jan,feb,mar,apr ... # | | | | .---- day of week (0 - 6) (Sunday=0 or 7) OR sun,mon,tue,wed,thu,fri,sat # | | | | | # * * * * * user-name command to be executed
Setup Master-Slave DNS Server Using “Bind” Tools in RHEL/CentOS 6.5
https://www.tecmint.com/setup-master-slave-dns-server-in-centos/
dns6 /cnbak
cnbak-backup-all-to6-drupalfiles ----
35 6 * * 0,3 sh /cnbak/dns3/rsync-3-6-drupalfiles-tocnbak.sh > /dev/null
45 6 * * 0,3 sh /cnbak/dns2/rsync-2-6-gcrootwww.sh > /dev/null
hwled.greencom.tw test migrate for 59.125.229.3
w10.greencom.tw test migrate for 59.125.229.6
Database backup from
Today Ready
Elysia cron Schedule crm.ali3.tw
lt.cycht.org.tw Schedule
main.cycht Schedule
bking.tw Schedule
20170116 購物車系統test
X1. http://crm.coonatea.com.tw opencart2.002 X
X2. http://d8.bking.tw prestashop 1.7.0.4 X
3. http://master.ali3.tw prestashop 1.6.1.10
4. http://shop.greencom.com.tw prestashop 1.6.1.10 from 2 to 6
X5. http://www15.greencomtw prestashop 1.6.1.10 from 229.2 shop.greencom.com.tw transfer to 229.3 database X
5.1 改網址 店名
0-Today Ready
59.125.229.2 move to 59.125.229.6
已改 named.conf
1.crm.greencom.tw /gcroot/www/crm /var/www/html ok
2.sales.greencom.tw /gcroot/www/crm /var/www/html
3.shop.greencom.tw /gcroot/www/crm /var/www/html
4. 0211 move mysql 2 --> 3 user_pstock | user_cynec
準備搬移
user_a-li3 user_cafes user_citycranes user_mingyang user_sunwind user_feida
HTML source viewer
http://whoischeck.info/source/flyagain.la