2018/5/6 Let's Encryptの設定

提供: ServerSettings
移動先: 案内検索

経緯

近々、Chromeで、httpのサイトにアクセスすると、警告が表示されるようになるらしい。

https://zenlogic.jp/aossl/basic/predict-chrome68/


そのため、WebサーバをSSLに対応させておこうと思った。 あと、SSL対応しても、自己署名証明書を使うと、やっぱり警告が出ると思うので、ちゃんとした認証局が発行した証明書を使いたい。 ということで、Let's Encryptを使用することにする。

環境

OS:fedora28

HTTPサーバ:Apache/2.4.33

手順

ここをみながら設定することにする。

https://letsencrypt.jp/usage/

インストール

# dnf install certbot
メタデータの期限切れの確認は、2:13:50 時間前の 2018年05月05日 23時58分15秒 に実施しました。
依存性が解決されました。
================================================================================
 パッケージ                   アーキテクチャ
                                          バージョン         リポジトリ   サイズ
================================================================================
インストール:
 certbot                      noarch      0.23.0-1.fc28      fedora        24 k
依存関係のインストール:
 python3-acme                 noarch      0.23.0-1.fc28      fedora       140 k
 python3-certbot              noarch      0.23.0-1.fc28      fedora       485 k
 python3-configargparse       noarch      0.12.0-3.fc28      fedora        35 k
 python3-configobj            noarch      5.0.6-10.fc28      fedora        67 k
 python3-funcsigs             noarch      1.0.2-8.fc28       fedora        29 k
 python3-future               noarch      0.16.0-8.fc28      fedora       783 k
 python3-josepy               noarch      1.1.0-1.fc28       updates      100 k
 python3-mock                 noarch      2.0.0-7.fc28       fedora       132 k
 python3-ndg_httpsclient      noarch      0.4.0-10.fc28      fedora        51 k
 python3-parsedatetime        noarch      2.4-6.fc28         fedora        81 k
 python3-pbr                  noarch      3.1.1-7.fc28       fedora       272 k
 python3-pyrfc3339            noarch      1.0-9.fc28         fedora        18 k
 python3-zope-component       noarch      4.3.0-5.fc28       fedora       311 k
 python3-zope-event           noarch      4.2.0-8.fc28       fedora       207 k
 python3-zope-interface       x86_64      4.4.3-1.fc28       fedora       153 k

トランザクションの要約
================================================================================
インストール  16 パッケージ

総ダウンロードサイズ: 2.8 M
パッケージ展開後のサイズ: 11 M
これでいいですか? [y/N]: '''y'''
パッケージをダウンロードしています:
(1/16): certbot-0.23.0-1.fc28.noarch.rpm        179 kB/s |  24 kB     00:00    
(2/16): python3-configargparse-0.12.0-3.fc28.no 798 kB/s |  35 kB     00:00    
(3/16): python3-acme-0.23.0-1.fc28.noarch.rpm   620 kB/s | 140 kB     00:00    
(4/16): python3-configobj-5.0.6-10.fc28.noarch. 1.3 MB/s |  67 kB     00:00    
(5/16): python3-mock-2.0.0-7.fc28.noarch.rpm    2.2 MB/s | 132 kB     00:00    
(6/16): python3-certbot-0.23.0-1.fc28.noarch.rp 1.6 MB/s | 485 kB     00:00    
(7/16): python3-pyrfc3339-1.0-9.fc28.noarch.rpm 391 kB/s |  18 kB     00:00    
(8/16): python3-future-0.16.0-8.fc28.noarch.rpm 5.0 MB/s | 783 kB     00:00    
(9/16): python3-parsedatetime-2.4-6.fc28.noarch 711 kB/s |  81 kB     00:00    
(10/16): python3-zope-component-4.3.0-5.fc28.no 3.2 MB/s | 311 kB     00:00    
(11/16): python3-ndg_httpsclient-0.4.0-10.fc28. 1.1 MB/s |  51 kB     00:00    
(12/16): python3-zope-interface-4.4.3-1.fc28.x8 1.8 MB/s | 153 kB     00:00    
(13/16): python3-funcsigs-1.0.2-8.fc28.noarch.r 926 kB/s |  29 kB     00:00    
(14/16): python3-zope-event-4.2.0-8.fc28.noarch 4.7 MB/s | 207 kB     00:00    
(15/16): python3-pbr-3.1.1-7.fc28.noarch.rpm    2.4 MB/s | 272 kB     00:00    
(16/16): python3-josepy-1.1.0-1.fc28.noarch.rpm 1.3 MB/s | 100 kB     00:00    
--------------------------------------------------------------------------------
合計                                            876 kB/s | 2.8 MB     00:03     
トランザクションの確認を実行中...
トランザクションの確認に成功しました。
トランザクションのテストを実行中...
トランザクションのテストに成功しました。
トランザクションを実行中...
  準備中           :                                                        1/1 
  インストール     : python3-josepy-1.1.0-1.fc28.noarch                    1/16 
  インストール     : python3-zope-event-4.2.0-8.fc28.noarch                2/16 
  インストール     : python3-zope-interface-4.4.3-1.fc28.x86_64            3/16 
  インストール     : python3-pyrfc3339-1.0-9.fc28.noarch                   4/16 
  インストール     : python3-future-0.16.0-8.fc28.noarch                   5/16 
  インストール     : python3-parsedatetime-2.4-6.fc28.noarch               6/16 
  インストール     : python3-zope-component-4.3.0-5.fc28.noarch            7/16 
  インストール     : python3-pbr-3.1.1-7.fc28.noarch                       8/16 
  インストール     : python3-funcsigs-1.0.2-8.fc28.noarch                  9/16 
  インストール     : python3-mock-2.0.0-7.fc28.noarch                     10/16 
  インストール     : python3-ndg_httpsclient-0.4.0-10.fc28.noarch         11/16 
  インストール     : python3-acme-0.23.0-1.fc28.noarch                    12/16 
  インストール     : python3-configobj-5.0.6-10.fc28.noarch               13/16 
  インストール     : python3-configargparse-0.12.0-3.fc28.noarch          14/16 
  インストール     : python3-certbot-0.23.0-1.fc28.noarch                 15/16 
  インストール     : certbot-0.23.0-1.fc28.noarch                         16/16 
  Running scriptlet: certbot-0.23.0-1.fc28.noarch                         16/16 
  検証中           : certbot-0.23.0-1.fc28.noarch                          1/16 
  検証中           : python3-certbot-0.23.0-1.fc28.noarch                  2/16 
  検証中           : python3-acme-0.23.0-1.fc28.noarch                     3/16 
  検証中           : python3-configargparse-0.12.0-3.fc28.noarch           4/16 
  検証中           : python3-configobj-5.0.6-10.fc28.noarch                5/16 
  検証中           : python3-future-0.16.0-8.fc28.noarch                   6/16 
  検証中           : python3-mock-2.0.0-7.fc28.noarch                      7/16 
  検証中           : python3-parsedatetime-2.4-6.fc28.noarch               8/16 
  検証中           : python3-pyrfc3339-1.0-9.fc28.noarch                   9/16 
  検証中           : python3-zope-component-4.3.0-5.fc28.noarch           10/16 
  検証中           : python3-zope-interface-4.4.3-1.fc28.x86_64           11/16 
  検証中           : python3-ndg_httpsclient-0.4.0-10.fc28.noarch         12/16 
  検証中           : python3-funcsigs-1.0.2-8.fc28.noarch                 13/16 
  検証中           : python3-pbr-3.1.1-7.fc28.noarch                      14/16 
  検証中           : python3-zope-event-4.2.0-8.fc28.noarch               15/16 
  検証中           : python3-josepy-1.1.0-1.fc28.noarch                   16/16 

インストール済み:
  certbot.noarch 0.23.0-1.fc28                                                  
  python3-acme.noarch 0.23.0-1.fc28                                             
  python3-certbot.noarch 0.23.0-1.fc28                                          
  python3-configargparse.noarch 0.12.0-3.fc28                                   
  python3-configobj.noarch 5.0.6-10.fc28                                        
  python3-funcsigs.noarch 1.0.2-8.fc28                                          
  python3-future.noarch 0.16.0-8.fc28                                           
  python3-josepy.noarch 1.1.0-1.fc28                                            
  python3-mock.noarch 2.0.0-7.fc28                                              
  python3-ndg_httpsclient.noarch 0.4.0-10.fc28                                  
  python3-parsedatetime.noarch 2.4-6.fc28                                       
  python3-pbr.noarch 3.1.1-7.fc28                                               
  python3-pyrfc3339.noarch 1.0-9.fc28                                           
  python3-zope-component.noarch 4.3.0-5.fc28                                    
  python3-zope-event.noarch 4.2.0-8.fc28                                        
  python3-zope-interface.x86_64 4.4.3-1.fc28                                    

完了しました!

設定

certbotを実行すると、設定画面が表示されるらしい。 残念ながら、自動では設定できなかった。

# certbot
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Certbot doesn't know how to automatically configure the web server on this system. However, it can still get a certificate for you. Please run "certbot certonly" to do so. You'll need to manually configure your web server to use the resulting certificate.


こっちを見ると、python2-certbot-apacheも必要らしい。

https://certbot.eff.org/docs/install.html#system-requirements


利用できるか確認

# dnf list available | grep certbot
python-certbot-dns-cloudflare-doc.noarch 0.23.0-1.fc28                   fedora 
python-certbot-dns-cloudxns-doc.noarch   0.23.0-1.fc28                   fedora 
python-certbot-dns-dnsimple-doc.noarch   0.23.0-1.fc28                   fedora 
python-certbot-dns-dnsmadeeasy-doc.noarch
python-certbot-dns-luadns-doc.noarch     0.23.0-1.fc28                   fedora 
python-certbot-dns-nsone-doc.noarch      0.23.0-1.fc28                   fedora 
python2-certbot.noarch                   0.23.0-1.fc28                   fedora 
python2-certbot-apache.noarch            0.23.0-1.fc28                   fedora 
python2-certbot-dns-cloudflare.noarch    0.23.0-1.fc28                   fedora 
python2-certbot-dns-cloudxns.noarch      0.23.0-1.fc28                   fedora 
python2-certbot-dns-digitalocean.noarch  0.23.0-1.fc28                   fedora 
python2-certbot-dns-dnsimple.noarch      0.23.0-1.fc28                   fedora 
python2-certbot-dns-dnsmadeeasy.noarch   0.23.0-1.fc28                   fedora 
python2-certbot-dns-google.noarch        0.23.0-1.fc28                   fedora 
python2-certbot-dns-luadns.noarch        0.23.0-1.fc28                   fedora 
python2-certbot-dns-nsone.noarch         0.23.0-1.fc28                   fedora 
python2-certbot-dns-rfc2136.noarch       0.23.0-1.fc28                   fedora 
python2-certbot-dns-route53.noarch       0.23.0-1.fc28                   fedora 
python2-certbot-nginx.noarch             0.23.0-1.fc28                   fedora 
python3-certbot-apache.noarch            0.23.0-1.fc28                   fedora 
python3-certbot-dns-cloudflare.noarch    0.23.0-1.fc28                   fedora 
python3-certbot-dns-cloudxns.noarch      0.23.0-1.fc28                   fedora 
python3-certbot-dns-digitalocean.noarch  0.23.0-1.fc28                   fedora 
python3-certbot-dns-dnsimple.noarch      0.23.0-1.fc28                   fedora 
python3-certbot-dns-dnsmadeeasy.noarch   0.23.0-1.fc28                   fedora 
python3-certbot-dns-google.noarch        0.23.0-1.fc28                   fedora 
python3-certbot-dns-luadns.noarch        0.23.0-1.fc28                   fedora 
python3-certbot-dns-nsone.noarch         0.23.0-1.fc28                   fedora 
python3-certbot-dns-rfc2136.noarch       0.23.0-1.fc28                   fedora 
python3-certbot-dns-route53.noarch       0.23.0-1.fc28                   fedora 
python3-certbot-nginx.noarch             0.23.0-1.fc28                   fedora 

python2-certbot-apache.noarchと、python3-certbot-apache.noarchがある様子。 バージョンはできるだけ新しい方を使った方がいいかと思い、python3の方をインストール。

# dnf install python3-certbot-apache.noarch
メタデータの期限切れの確認は、2:48:34 時間前の 2018年05月05日 23時58分15秒 に実施しました。
依存性が解決されました。
================================================================================
 パッケージ                 アーキテクチャ
                                       バージョン             リポジトリ  サイズ
================================================================================
インストール:
 python3-certbot-apache     noarch     0.23.0-1.fc28          fedora      220 k
依存関係のインストール:
 mod_ssl                    x86_64     1:2.4.33-5.fc28        updates     114 k

トランザクションの要約
================================================================================
インストール  2 パッケージ

総ダウンロードサイズ: 334 k
パッケージ展開後のサイズ: 1.0 M
これでいいですか? [y/N]: y
パッケージをダウンロードしています:
(1/2): python3-certbot-apache-0.23.0-1.fc28.noa 964 kB/s | 220 kB     00:00    
(2/2): mod_ssl-2.4.33-5.fc28.x86_64.rpm         494 kB/s | 114 kB     00:00    
--------------------------------------------------------------------------------
合計                                            148 kB/s | 334 kB     00:02     
トランザクションの確認を実行中...
トランザクションの確認に成功しました。
トランザクションのテストを実行中...
トランザクションのテストに成功しました。
トランザクションを実行中...
  準備中           :                                                        1/1 
  インストール     : mod_ssl-1:2.4.33-5.fc28.x86_64                         1/2 
  インストール     : python3-certbot-apache-0.23.0-1.fc28.noarch            2/2 
  Running scriptlet: python3-certbot-apache-0.23.0-1.fc28.noarch            2/2 
  検証中           : python3-certbot-apache-0.23.0-1.fc28.noarch            1/2 
  検証中           : mod_ssl-1:2.4.33-5.fc28.x86_64                         2/2 

インストール済み:
  python3-certbot-apache.noarch 0.23.0-1.fc28   mod_ssl.x86_64 1:2.4.33-5.fc28  

完了しました!


どのようなファイルがインストールされたのか、念の為確認。

# rpm -ql python3-certbot-apache
/usr/lib/python3.6/site-packages/certbot_apache
/usr/lib/python3.6/site-packages/certbot_apache-0.23.0-py3.6.egg-info
/usr/lib/python3.6/site-packages/certbot_apache-0.23.0-py3.6.egg-info/PKG-INFO
/usr/lib/python3.6/site-packages/certbot_apache-0.23.0-py3.6.egg-info/SOURCES.txt
/usr/lib/python3.6/site-packages/certbot_apache-0.23.0-py3.6.egg-info/dependency_links.txt
/usr/lib/python3.6/site-packages/certbot_apache-0.23.0-py3.6.egg-info/entry_points.txt
/usr/lib/python3.6/site-packages/certbot_apache-0.23.0-py3.6.egg-info/requires.txt
/usr/lib/python3.6/site-packages/certbot_apache-0.23.0-py3.6.egg-info/top_level.txt
/usr/lib/python3.6/site-packages/certbot_apache/__init__.py
/usr/lib/python3.6/site-packages/certbot_apache/__pycache__
/usr/lib/python3.6/site-packages/certbot_apache/__pycache__/__init__.cpython-36.opt-1.pyc
/usr/lib/python3.6/site-packages/certbot_apache/__pycache__/__init__.cpython-36.pyc
/usr/lib/python3.6/site-packages/certbot_apache/__pycache__/apache_util.cpython-36.opt-1.pyc
/usr/lib/python3.6/site-packages/certbot_apache/__pycache__/apache_util.cpython-36.pyc
/usr/lib/python3.6/site-packages/certbot_apache/__pycache__/augeas_configurator.cpython-36.opt-1.pyc
/usr/lib/python3.6/site-packages/certbot_apache/__pycache__/augeas_configurator.cpython-36.pyc
/usr/lib/python3.6/site-packages/certbot_apache/__pycache__/configurator.cpython-36.opt-1.pyc
/usr/lib/python3.6/site-packages/certbot_apache/__pycache__/configurator.cpython-36.pyc
/usr/lib/python3.6/site-packages/certbot_apache/__pycache__/constants.cpython-36.opt-1.pyc
/usr/lib/python3.6/site-packages/certbot_apache/__pycache__/constants.cpython-36.pyc
/usr/lib/python3.6/site-packages/certbot_apache/__pycache__/display_ops.cpython-36.opt-1.pyc
/usr/lib/python3.6/site-packages/certbot_apache/__pycache__/display_ops.cpython-36.pyc
/usr/lib/python3.6/site-packages/certbot_apache/__pycache__/entrypoint.cpython-36.opt-1.pyc
/usr/lib/python3.6/site-packages/certbot_apache/__pycache__/entrypoint.cpython-36.pyc
/usr/lib/python3.6/site-packages/certbot_apache/__pycache__/http_01.cpython-36.opt-1.pyc
/usr/lib/python3.6/site-packages/certbot_apache/__pycache__/http_01.cpython-36.pyc
/usr/lib/python3.6/site-packages/certbot_apache/__pycache__/obj.cpython-36.opt-1.pyc
/usr/lib/python3.6/site-packages/certbot_apache/__pycache__/obj.cpython-36.pyc
/usr/lib/python3.6/site-packages/certbot_apache/__pycache__/override_arch.cpython-36.opt-1.pyc
/usr/lib/python3.6/site-packages/certbot_apache/__pycache__/override_arch.cpython-36.pyc
/usr/lib/python3.6/site-packages/certbot_apache/__pycache__/override_centos.cpython-36.opt-1.pyc
/usr/lib/python3.6/site-packages/certbot_apache/__pycache__/override_centos.cpython-36.pyc
/usr/lib/python3.6/site-packages/certbot_apache/__pycache__/override_darwin.cpython-36.opt-1.pyc
/usr/lib/python3.6/site-packages/certbot_apache/__pycache__/override_darwin.cpython-36.pyc
/usr/lib/python3.6/site-packages/certbot_apache/__pycache__/override_debian.cpython-36.opt-1.pyc
/usr/lib/python3.6/site-packages/certbot_apache/__pycache__/override_debian.cpython-36.pyc
/usr/lib/python3.6/site-packages/certbot_apache/__pycache__/override_gentoo.cpython-36.opt-1.pyc
/usr/lib/python3.6/site-packages/certbot_apache/__pycache__/override_gentoo.cpython-36.pyc
/usr/lib/python3.6/site-packages/certbot_apache/__pycache__/override_suse.cpython-36.opt-1.pyc
/usr/lib/python3.6/site-packages/certbot_apache/__pycache__/override_suse.cpython-36.pyc
/usr/lib/python3.6/site-packages/certbot_apache/__pycache__/parser.cpython-36.opt-1.pyc
/usr/lib/python3.6/site-packages/certbot_apache/__pycache__/parser.cpython-36.pyc
/usr/lib/python3.6/site-packages/certbot_apache/__pycache__/tls_sni_01.cpython-36.opt-1.pyc
/usr/lib/python3.6/site-packages/certbot_apache/__pycache__/tls_sni_01.cpython-36.pyc
/usr/lib/python3.6/site-packages/certbot_apache/apache_util.py
/usr/lib/python3.6/site-packages/certbot_apache/augeas_configurator.py
/usr/lib/python3.6/site-packages/certbot_apache/augeas_lens
/usr/lib/python3.6/site-packages/certbot_apache/augeas_lens/httpd.aug
/usr/lib/python3.6/site-packages/certbot_apache/centos-options-ssl-apache.conf
/usr/lib/python3.6/site-packages/certbot_apache/configurator.py
/usr/lib/python3.6/site-packages/certbot_apache/constants.py
/usr/lib/python3.6/site-packages/certbot_apache/display_ops.py
/usr/lib/python3.6/site-packages/certbot_apache/entrypoint.py
/usr/lib/python3.6/site-packages/certbot_apache/http_01.py
/usr/lib/python3.6/site-packages/certbot_apache/obj.py
/usr/lib/python3.6/site-packages/certbot_apache/options-ssl-apache.conf
/usr/lib/python3.6/site-packages/certbot_apache/override_arch.py
/usr/lib/python3.6/site-packages/certbot_apache/override_centos.py
/usr/lib/python3.6/site-packages/certbot_apache/override_darwin.py
/usr/lib/python3.6/site-packages/certbot_apache/override_debian.py
/usr/lib/python3.6/site-packages/certbot_apache/override_gentoo.py
/usr/lib/python3.6/site-packages/certbot_apache/override_suse.py
/usr/lib/python3.6/site-packages/certbot_apache/parser.py
/usr/lib/python3.6/site-packages/certbot_apache/tests
/usr/lib/python3.6/site-packages/certbot_apache/tests/__init__.py
/usr/lib/python3.6/site-packages/certbot_apache/tests/__pycache__
/usr/lib/python3.6/site-packages/certbot_apache/tests/__pycache__/__init__.cpython-36.opt-1.pyc
/usr/lib/python3.6/site-packages/certbot_apache/tests/__pycache__/__init__.cpython-36.pyc
/usr/lib/python3.6/site-packages/certbot_apache/tests/__pycache__/augeas_configurator_test.cpython-36.opt-1.pyc
/usr/lib/python3.6/site-packages/certbot_apache/tests/__pycache__/augeas_configurator_test.cpython-36.pyc
/usr/lib/python3.6/site-packages/certbot_apache/tests/__pycache__/centos_test.cpython-36.opt-1.pyc
/usr/lib/python3.6/site-packages/certbot_apache/tests/__pycache__/centos_test.cpython-36.pyc
/usr/lib/python3.6/site-packages/certbot_apache/tests/__pycache__/complex_parsing_test.cpython-36.opt-1.pyc
/usr/lib/python3.6/site-packages/certbot_apache/tests/__pycache__/complex_parsing_test.cpython-36.pyc
/usr/lib/python3.6/site-packages/certbot_apache/tests/__pycache__/configurator_test.cpython-36.opt-1.pyc
/usr/lib/python3.6/site-packages/certbot_apache/tests/__pycache__/configurator_test.cpython-36.pyc
/usr/lib/python3.6/site-packages/certbot_apache/tests/__pycache__/debian_test.cpython-36.opt-1.pyc
/usr/lib/python3.6/site-packages/certbot_apache/tests/__pycache__/debian_test.cpython-36.pyc
/usr/lib/python3.6/site-packages/certbot_apache/tests/__pycache__/display_ops_test.cpython-36.opt-1.pyc
/usr/lib/python3.6/site-packages/certbot_apache/tests/__pycache__/display_ops_test.cpython-36.pyc
/usr/lib/python3.6/site-packages/certbot_apache/tests/__pycache__/entrypoint_test.cpython-36.opt-1.pyc
/usr/lib/python3.6/site-packages/certbot_apache/tests/__pycache__/entrypoint_test.cpython-36.pyc
/usr/lib/python3.6/site-packages/certbot_apache/tests/__pycache__/gentoo_test.cpython-36.opt-1.pyc
/usr/lib/python3.6/site-packages/certbot_apache/tests/__pycache__/gentoo_test.cpython-36.pyc
/usr/lib/python3.6/site-packages/certbot_apache/tests/__pycache__/http_01_test.cpython-36.opt-1.pyc
/usr/lib/python3.6/site-packages/certbot_apache/tests/__pycache__/http_01_test.cpython-36.pyc
/usr/lib/python3.6/site-packages/certbot_apache/tests/__pycache__/obj_test.cpython-36.opt-1.pyc
/usr/lib/python3.6/site-packages/certbot_apache/tests/__pycache__/obj_test.cpython-36.pyc
/usr/lib/python3.6/site-packages/certbot_apache/tests/__pycache__/parser_test.cpython-36.opt-1.pyc
/usr/lib/python3.6/site-packages/certbot_apache/tests/__pycache__/parser_test.cpython-36.pyc
/usr/lib/python3.6/site-packages/certbot_apache/tests/__pycache__/tls_sni_01_test.cpython-36.opt-1.pyc
/usr/lib/python3.6/site-packages/certbot_apache/tests/__pycache__/tls_sni_01_test.cpython-36.pyc
/usr/lib/python3.6/site-packages/certbot_apache/tests/__pycache__/util.cpython-36.opt-1.pyc
/usr/lib/python3.6/site-packages/certbot_apache/tests/__pycache__/util.cpython-36.pyc
/usr/lib/python3.6/site-packages/certbot_apache/tests/augeas_configurator_test.py
/usr/lib/python3.6/site-packages/certbot_apache/tests/centos_test.py
/usr/lib/python3.6/site-packages/certbot_apache/tests/complex_parsing_test.py
/usr/lib/python3.6/site-packages/certbot_apache/tests/configurator_test.py
/usr/lib/python3.6/site-packages/certbot_apache/tests/debian_test.py
/usr/lib/python3.6/site-packages/certbot_apache/tests/display_ops_test.py
/usr/lib/python3.6/site-packages/certbot_apache/tests/entrypoint_test.py
/usr/lib/python3.6/site-packages/certbot_apache/tests/gentoo_test.py
/usr/lib/python3.6/site-packages/certbot_apache/tests/http_01_test.py
/usr/lib/python3.6/site-packages/certbot_apache/tests/obj_test.py
/usr/lib/python3.6/site-packages/certbot_apache/tests/parser_test.py
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/centos7_apache
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/centos7_apache/apache
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/centos7_apache/apache/httpd
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/centos7_apache/apache/httpd/conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/centos7_apache/apache/httpd/conf.d
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/centos7_apache/apache/httpd/conf.d/README
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/centos7_apache/apache/httpd/conf.d/autoindex.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/centos7_apache/apache/httpd/conf.d/centos.example.com.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/centos7_apache/apache/httpd/conf.d/ssl.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/centos7_apache/apache/httpd/conf.d/userdir.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/centos7_apache/apache/httpd/conf.d/welcome.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/centos7_apache/apache/httpd/conf.modules.d
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/centos7_apache/apache/httpd/conf.modules.d/00-base.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/centos7_apache/apache/httpd/conf.modules.d/00-dav.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/centos7_apache/apache/httpd/conf.modules.d/00-lua.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/centos7_apache/apache/httpd/conf.modules.d/00-mpm.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/centos7_apache/apache/httpd/conf.modules.d/00-proxy.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/centos7_apache/apache/httpd/conf.modules.d/00-ssl.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/centos7_apache/apache/httpd/conf.modules.d/00-systemd.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/centos7_apache/apache/httpd/conf.modules.d/01-cgi.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/centos7_apache/apache/httpd/conf/httpd.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/centos7_apache/apache/httpd/conf/magic
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/centos7_apache/apache/sites
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/centos7_apache/apache/sysconfig
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/centos7_apache/apache/sysconfig/httpd
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/complex_parsing
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/complex_parsing/apache2.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/complex_parsing/conf-enabled
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/complex_parsing/conf-enabled/dummy.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/complex_parsing/test_fnmatch.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/complex_parsing/test_variables.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/augeas_vhosts
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/augeas_vhosts/apache2
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/augeas_vhosts/apache2/apache2.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/augeas_vhosts/apache2/conf-available
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/augeas_vhosts/apache2/conf-available/bad_conf_file.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/augeas_vhosts/apache2/conf-available/other-vhosts-access-log.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/augeas_vhosts/apache2/conf-available/security.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/augeas_vhosts/apache2/conf-available/serve-cgi-bin.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/augeas_vhosts/apache2/conf-enabled
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/augeas_vhosts/apache2/conf-enabled/other-vhosts-access-log.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/augeas_vhosts/apache2/conf-enabled/security.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/augeas_vhosts/apache2/conf-enabled/serve-cgi-bin.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/augeas_vhosts/apache2/envvars
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/augeas_vhosts/apache2/mods-available
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/augeas_vhosts/apache2/mods-available/authz_svn.load
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/augeas_vhosts/apache2/mods-available/dav.load
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/augeas_vhosts/apache2/mods-available/dav_svn.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/augeas_vhosts/apache2/mods-available/dav_svn.load
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/augeas_vhosts/apache2/mods-available/rewrite.load
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/augeas_vhosts/apache2/mods-available/ssl.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/augeas_vhosts/apache2/mods-available/ssl.load
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/augeas_vhosts/apache2/mods-enabled
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/augeas_vhosts/apache2/mods-enabled/.gitignore
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/augeas_vhosts/apache2/mods-enabled/authz_svn.load
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/augeas_vhosts/apache2/mods-enabled/dav.load
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/augeas_vhosts/apache2/mods-enabled/dav_svn.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/augeas_vhosts/apache2/mods-enabled/dav_svn.load
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/augeas_vhosts/apache2/ports.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/augeas_vhosts/apache2/sites-available
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/augeas_vhosts/apache2/sites-available/another_wildcard.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/augeas_vhosts/apache2/sites-available/old,default.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/augeas_vhosts/apache2/sites-available/wildcard.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/augeas_vhosts/apache2/sites-enabled
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/augeas_vhosts/apache2/sites-enabled/another_wildcard.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/augeas_vhosts/apache2/sites-enabled/old,default.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/augeas_vhosts/apache2/sites-enabled/wildcard.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/augeas_vhosts/sites
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/default_vhost
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/default_vhost/apache2
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/default_vhost/apache2/apache2.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/default_vhost/apache2/conf-available
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/default_vhost/apache2/conf-available/other-vhosts-access-log.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/default_vhost/apache2/conf-available/security.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/default_vhost/apache2/conf-available/serve-cgi-bin.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/default_vhost/apache2/conf-enabled
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/default_vhost/apache2/conf-enabled/other-vhosts-access-log.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/default_vhost/apache2/conf-enabled/security.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/default_vhost/apache2/conf-enabled/serve-cgi-bin.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/default_vhost/apache2/envvars
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/default_vhost/apache2/mods-available
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/default_vhost/apache2/mods-available/ssl.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/default_vhost/apache2/mods-available/ssl.load
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/default_vhost/apache2/ports.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/default_vhost/apache2/sites-available
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/default_vhost/apache2/sites-available/000-default.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/default_vhost/apache2/sites-available/default-ssl.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/default_vhost/apache2/sites-enabled
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/default_vhost/apache2/sites-enabled/000-default.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/default_vhost/sites
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multi_vhosts
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multi_vhosts/apache2
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multi_vhosts/apache2/apache2.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multi_vhosts/apache2/envvars
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multi_vhosts/apache2/ports.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multi_vhosts/apache2/sites-available
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multi_vhosts/apache2/sites-available/default.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multi_vhosts/apache2/sites-available/multi-vhost.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multi_vhosts/apache2/sites-enabled
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multi_vhosts/apache2/sites-enabled/default.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multi_vhosts/apache2/sites-enabled/multi-vhost.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2/apache2.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2/conf-available
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2/conf-available/bad_conf_file.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2/conf-available/other-vhosts-access-log.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2/conf-available/security.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2/conf-available/serve-cgi-bin.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2/conf-enabled
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2/conf-enabled/other-vhosts-access-log.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2/conf-enabled/security.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2/conf-enabled/serve-cgi-bin.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2/envvars
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2/mods-available
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2/mods-available/authz_svn.load
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2/mods-available/dav.load
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2/mods-available/dav_svn.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2/mods-available/dav_svn.load
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2/mods-available/rewrite.load
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2/mods-available/ssl.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2/mods-available/ssl.load
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2/mods-enabled
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2/mods-enabled/.gitignore
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2/mods-enabled/authz_svn.load
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2/mods-enabled/dav.load
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2/mods-enabled/dav_svn.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2/mods-enabled/dav_svn.load
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2/ports.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2/sites-available
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2/sites-available/000-default.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2/sites-available/certbot.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2/sites-available/default-ssl-port-only.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2/sites-available/default-ssl.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2/sites-available/encryption-example.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2/sites-available/mod_macro-example.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2/sites-available/ocsp-ssl.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2/sites-available/wildcard.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2/sites-enabled
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2/sites-enabled/000-default.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2/sites-enabled/certbot.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2/sites-enabled/default-ssl-port-only.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2/sites-enabled/default-ssl.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2/sites-enabled/encryption-example.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2/sites-enabled/mod_macro-example.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2/sites-enabled/non-symlink.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2/sites-enabled/ocsp-ssl.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/apache2/sites-enabled/wildcard.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/debian_apache_2_4/multiple_vhosts/sites
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/gentoo_apache
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/gentoo_apache/apache
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/gentoo_apache/apache/apache2
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/gentoo_apache/apache/apache2/httpd.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/gentoo_apache/apache/apache2/magic
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/gentoo_apache/apache/apache2/modules.d
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/gentoo_apache/apache/apache2/modules.d/.keep_www-servers_apache-2
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/gentoo_apache/apache/apache2/modules.d/00_default_settings.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/gentoo_apache/apache/apache2/modules.d/00_error_documents.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/gentoo_apache/apache/apache2/modules.d/00_languages.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/gentoo_apache/apache/apache2/modules.d/00_mod_autoindex.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/gentoo_apache/apache/apache2/modules.d/00_mod_info.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/gentoo_apache/apache/apache2/modules.d/00_mod_log_config.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/gentoo_apache/apache/apache2/modules.d/00_mod_mime.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/gentoo_apache/apache/apache2/modules.d/00_mod_status.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/gentoo_apache/apache/apache2/modules.d/00_mod_userdir.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/gentoo_apache/apache/apache2/modules.d/00_mpm.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/gentoo_apache/apache/apache2/modules.d/10_mod_mem_cache.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/gentoo_apache/apache/apache2/modules.d/40_mod_ssl.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/gentoo_apache/apache/apache2/modules.d/41_mod_http2.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/gentoo_apache/apache/apache2/modules.d/45_mod_dav.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/gentoo_apache/apache/apache2/modules.d/46_mod_ldap.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/gentoo_apache/apache/apache2/vhosts.d
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/gentoo_apache/apache/apache2/vhosts.d/.keep_www-servers_apache-2
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/gentoo_apache/apache/apache2/vhosts.d/00_default_ssl_vhost.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/gentoo_apache/apache/apache2/vhosts.d/00_default_vhost.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/gentoo_apache/apache/apache2/vhosts.d/default_vhost.include
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/gentoo_apache/apache/apache2/vhosts.d/gentoo.example.com.conf
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/gentoo_apache/apache/conf.d
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/gentoo_apache/apache/conf.d/apache2
/usr/lib/python3.6/site-packages/certbot_apache/tests/testdata/gentoo_apache/apache/sites
/usr/lib/python3.6/site-packages/certbot_apache/tests/tls_sni_01_test.py
/usr/lib/python3.6/site-packages/certbot_apache/tests/util.py
/usr/lib/python3.6/site-packages/certbot_apache/tls_sni_01.py
/usr/share/doc/python3-certbot-apache
/usr/share/doc/python3-certbot-apache/README.rst
/usr/share/licenses/python3-certbot-apache
/usr/share/licenses/python3-certbot-apache/LICENSE.txt


もう一度、certbotを実行。 apacheのバーチャルホストの設定を追加しないと、成功しない様子。

# certbot
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator apache, Installer apache
Enter email address (used for urgent renewal and security notices) (Enter 'c' to
cancel): メールアドレス

-------------------------------------------------------------------------------
Please read the Terms of Service at
https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf. You must
agree in order to register with the ACME server at
https://acme-v01.api.letsencrypt.org/directory
-------------------------------------------------------------------------------
(A)gree/(C)ancel: a

-------------------------------------------------------------------------------
Would you be willing to share your email address with the Electronic Frontier
Foundation, a founding partner of the Let's Encrypt project and the non-profit
organization that develops Certbot? We'd like to send you email about EFF and
our work to encrypt the web, protect its users and defend digital rights.
-------------------------------------------------------------------------------
(Y)es/(N)o: y
No names were found in your configuration files. Please enter in your domain
name(s) (comma and/or space separated)  (Enter 'c' to cancel): www.rfm.jp
Obtaining a new certificate
Performing the following challenges:
http-01 challenge for www.rfm.jp
Cleaning up challenges
Unable to find a virtual host listening on port 80 which is currently needed for Certbot to prove to the CA that you control your domain. Please add a virtual host for port 80.

IMPORTANT NOTES:
 - Your account credentials have been saved in your Certbot
   configuration directory at /etc/letsencrypt. You should make a
   secure backup of this folder now. This configuration directory will
   also contain certificates and private keys obtained by Certbot so
   making regular backups of this folder is ideal.


バーチャルホストの設定はあまりしたくないので、別の方法で試してみたら、成功した模様。

これで、秘密鍵と公開鍵の準備完了。

# certbot certonly --webroot -w /var/www/html/ -d www.rfm.jp
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator webroot, Installer None
Obtaining a new certificate
Performing the following challenges:
http-01 challenge for www.rfm.jp
Using the webroot path /var/www/html for all unmatched domains.
Waiting for verification...
Cleaning up challenges

IMPORTANT NOTES:
 - Congratulations! Your certificate and chain have been saved at:
   /etc/letsencrypt/live/www.rfm.jp/fullchain.pem
   Your key file has been saved at:
   /etc/letsencrypt/live/www.rfm.jp/privkey.pem
   Your cert will expire on 2018-08-03. To obtain a new or tweaked
   version of this certificate in the future, simply run certbot
   again. To non-interactively renew *all* of your certificates, run
   "certbot renew"
 - If you like Certbot, please consider supporting our work by:

   Donating to ISRG / Let's Encrypt:   https://letsencrypt.org/donate
   Donating to EFF:                    https://eff.org/donate-le

/etc/letsencrypt/live/www.rfm.jp/fullchain.pem


秘密鍵と公開鍵の確認

# cd /etc/letsencrypt/live/www.rfm.jp
# ls -l
合計 4
-rw-r--r-- 1 root root 543  5月  6 02:57 README
lrwxrwxrwx 1 root root  34  5月  6 03:52 cert.pem -> ../../archive/www.rfm.jp/cert.pem
lrwxrwxrwx 1 root root  35  5月  6 03:52 chain.pem -> ../../archive/www.rfm.jp/chain.pem
lrwxrwxrwx 1 root root  39  5月  6 03:52 fullchain.pem -> ../../archive/www.rfm.jp/fullchain.pem
lrwxrwxrwx 1 root root  37  5月  6 03:52 privkey.pem -> ../../archive/www.rfm.jp/privkey.pem


apacheの設定ファイルに記載されている、証明書のファイルパスを編集する

# cd /etc/httpd/conf.d
# vi ssl.conf

編集前
SSLCertificateFile /etc/pki/tls/certs/localhost.crt
SSLCertificateKeyFile /etc/pki/tls/private/localhost.key
#SSLCertificateChainFile /etc/pki/tls/certs/server-chain.crt

編集後
SSLCertificateFile /etc/letsencrypt/live/www.rfm.jp/cert.pem
SSLCertificateKeyFile /etc/letsencrypt/live/www.rfm.jp/privkey.pem
SSLCertificateChainFile /etc/letsencrypt/live/www.rfm.jp/chain.pem


apacheを再起動

# systemctl restart httpd


これで、apacheはLet's Encrypt発行の証明書を使用するようになった、

最後に、証明書が自動で更新されるようにcronの設定をする。

# cd /etc/cron.monthly/letsencrypt
# vi letsencrypt 


letsencrypの内容

#!/bin/sh
certbot renew

対処