Hi,
I am using a dedicated server running ubuntu 20.04 with HestiaCP and several website domains.
To get the LE certificates Hestia does a great job with domains without widcard.
I have 5 domains that require wildcard for multiple sub-domains.
To get the LE certs I have used certbot CLI .
I now need to update the <VirtualHost > to point to the certificate files.
I believe it is the apache2.ssl.conf files that need updating ( correct ? )
But there is a warning:
#=========================================================================#
# Default Web Domain Template #
# DO NOT MODIFY THIS FILE! CHANGES WILL BE LOST WHEN REBUILDING DOMAINS #
# https://docs.hestiacp.com/admin_docs/web.html#how-do-web-templates-work #
#=========================================================================#
Several questions:
Since HestiaCP updates can cause a rebuild, are they automatic?
How often do they occur?
Is there a way to prevent this file from getting over-written?
Perhaps by changing the permissions?
What if I don’t have HespiaCP run these 5 domains at all ?
( It would still run the other 10 websites that don’t use sub-domains )
As we know, if HespiaCP is administering them, the <VirtualHost > will be in the path /home/user/conf/web/my-domain
But if I do not have them even mentioned in HespiaCP, if I build the <VirtualHost > in the usual place for ubuntu i.e. /etc/apache2/sites-available/my-domain.conf
Then I can maintain it with ftp as usual and HespiaCP will leave it alone - is that correct?
#!/bin/bash
source /etc/hestiacp/hestia.conf
source $HESTIA/func/main.sh
for user in $($BIN/v-list-users plain | cut -f1 ); do
echo "Doing user: $user"
$BIN/v-rebuild-web-domains $user
done
I added an ‘s’
Last login: Wed Jun 8 15:19:13 2022 from 77.102.184.93
root@expressresponse:~# v-rebuild-web-domains dave gldn.page
Error: SSL is not enabled
Error: SSL is not enabled
Error: SSL is not enabled
Error: SSL is not enabled
Error: SSL is not enabled
root@expressresponse:~#
Not sure why this is.
UPDATE 2
I have run out of replies !!! so I’ll have to update this one
and hope it gets seen !!
Tried this:
root@expressresponse:~# v-add-web-domain-ssl dave gldn.page /etc/letsencrypt/live/gldn.page
Error: /etc/letsencrypt/live/gldn.page/gldn.page.crt not found
For some reason it’s looking for .crt
we have
SSLEngine on
SSLVerifyClient none
ssl_certificate /etc/letsencrypt/live/%domain%/fullchain.pem; # ma>
ssl_certificate_key /etc/letsencrypt/live/%domain%/privkey.pem; # >
include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot