Amazon Linuxμμ μ€νμ μλνλ λμ: Linux ip #1 SMP Sat Oct 24 01:31:37 UTC 2015 x86_64 x86_64 x86_64 GNU/Linux
Git μ»€λ° ν΄μ: 6950dbd0708d3ba16b717ad1097332fc37e33f15
λ€μ μ€λ₯κ° λ°μν©λλ€.
[ec2-user<strong i="10">@ip</strong> letsencrypt]$ ./letsencrypt-auto
Checking for new version...
Creating virtual environment...
Installing Python packages...
Requesting root privileges to run letsencrypt...
sudo /home/ec2-user/.local/share/letsencrypt/bin/letsencrypt --no-self-upgrade
Traceback (most recent call last):
File "/home/ec2-user/.local/share/letsencrypt/bin/letsencrypt", line 7, in <module>
from letsencrypt.cli import main
File "/home/ec2-user/.local/share/letsencrypt/local/lib/python2.7/dist-packages/letsencrypt/cli.py", line 21, in <modul
e>
import OpenSSL
File "/home/ec2-user/.local/share/letsencrypt/local/lib/python2.7/dist-packages/OpenSSL/__init__.py", line 8, in <modul
e>
from OpenSSL import rand, crypto, SSL
File "/home/ec2-user/.local/share/letsencrypt/local/lib/python2.7/dist-packages/OpenSSL/rand.py", line 11, in <module>
from OpenSSL._util import (
File "/home/ec2-user/.local/share/letsencrypt/local/lib/python2.7/dist-packages/OpenSSL/_util.py", line 6, in <module>
from cryptography.hazmat.bindings.openssl.binding import Binding
ImportError: No module named cryptography.hazmat.bindings.openssl.binding
μ΄κ²μ 2μ 8μΌ νμ¬ μλνκ³ μμμ΅λλ€... κ·Έλ¬λ λ¬Έμ κ° λ°μν μμΉλ₯Ό μ°ΎκΈ° μν΄ μ΄μ λ²μ μ 체ν¬μμνλ €κ³ ν λ letsencrypt-autoλ κ³μ μ΅μ λ²μ μΌλ‘ μ체 μ κ·Έλ μ΄λν©λλ€!
λͺ¨λ μ
λ°μ΄νΈ.. μ λ κ°μ λ¬Έμ μ μ§λ©΄νκ³ μμ΅λλ€.
μλλ λ‘κ·Έμ
λλ€(νκ²½ - amazon linux)
μ€νλ λͺ
λ Ή: ./letsencrypt-auto --help
Checking for new version...
Creating virtual environment...
Installing Python packages...
Installation succeeded.
Requesting root privileges to run letsencrypt...
sudo /home/ec2-user/.local/share/letsencrypt/bin/letsencrypt --help
Traceback (most recent call last):
File "/home/ec2-user/.local/share/letsencrypt/bin/letsencrypt", line 7, in <module>
from letsencrypt.cli import main
File "/home/ec2-user/.local/share/letsencrypt/local/lib/python2.7/dist-packages/letsencrypt/cli.py", line 21, in <module>
import OpenSSL
File "/home/ec2-user/.local/share/letsencrypt/local/lib/python2.7/dist-packages/OpenSSL/__init__.py", line 8, in <module>
from OpenSSL import rand, crypto, SSL
File "/home/ec2-user/.local/share/letsencrypt/local/lib/python2.7/dist-packages/OpenSSL/rand.py", line 11, in <module>
from OpenSSL._util import (
File "/home/ec2-user/.local/share/letsencrypt/local/lib/python2.7/dist-packages/OpenSSL/_util.py", line 6, in <module>
from cryptography.hazmat.bindings.openssl.binding import Binding
ImportError: No module named cryptography.hazmat.bindings.openssl.binding
μ΄ μλ
sudo ./letsencrypt-auto --help
μμ λͺ
λ Ήμ μλνλ©΄ μλν©λλ€.
sudo μ λμ¬λ‘λ λμΌν λ¬Έμ κ° ν΄κ²°λμμ΅λλ€. μ΄κ² μ΄λ»κ² ν΄κ²°λλμ?
κ°μ λ¬Έμ κ° λ°μνκ³ sudoλ₯Ό μ¬μ©νμ¬ μμ λμμ΅λλ€. κ°μ¬ν©λλ€.
Amazon Linux(Linux ip-172-31-10-255 4.9.75-25.55.amzn1.x86_64 #1 SMP Fri Jan 5 23:50:27 UTC 2018 x86_64)μμ μ΅μ certbotμΌλ‘ μ λ°μ΄νΈν νμλ μ΄ λ¬Έμ κ° λ°μν©λλ€. x86_64 x86_64 GNU/리λ μ€)
/opt/eff.org/certbot/venv/local/lib64/python2.7/dist-packages/cryptography/
μλμ μνΈν ν¨ν€μ§κ° μ€μΉλκ³ μλ κ² κ°μ΅λλ€.
κ·Έλ¬λ νμ΄μ¬μ lib64 κ²½λ‘μμ μ°Ύκ³ /μλνμ§ μκΈ° λλ¬Έμ κ·Έκ²μ μ°Ύμ§ λͺ»ν©λλ€. μλμ λͺ¨λ κ²½λ‘λ /lib/
κ° μλλΌ /lib64/
μ΄ νκ²½ rm -rf /opt/eff.org
μμ ν μ κ±°νκ³ cert-botμ λ€μ μ€μΉνμ§λ§ μ¬μ ν λμΌν μ€λ₯/λ¬Έμ κ° λ°μν©λλ€.
`
[root@ip-172-31-10-255 venv]# /certbot/certbot-auto --debug renew
Error: couldn't get currently installed version for /opt/eff.org/certbot/venv/bin/letsencrypt:
Traceback (most recent call last):
File "/opt/eff.org/certbot/venv/bin/letsencrypt", line 7, in <module>
from certbot.main import main
File "/opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/certbot/main.py", line 10, in <module>
import josepy as jose
File "/opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/josepy/__init__.py", line 41, in <module>
from josepy.interfaces import JSONDeSerializable
File "/opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/josepy/interfaces.py", line 8, in <module>
from josepy import errors, util
File "/opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/josepy/util.py", line 4, in <module>
import OpenSSL
File "/opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/OpenSSL/__init__.py", line 8, in <module>
from OpenSSL import rand, crypto, SSL
File "/opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/OpenSSL/rand.py", line 12, in <module>
from OpenSSL._util import (
File "/opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/OpenSSL/_util.py", line 6, in <module>
from cryptography.hazmat.bindings.openssl.binding import Binding
ImportError: No module named cryptography.hazmat.bindings.openssl.binding
@utdrmac λλ μ μΈμ¦μλ₯Ό λ°°ν¬νκΈ° μ μ κ°μ μ€λ₯λ₯Ό λ§λ¬μ΅λλ€. κ·νμ μ견μ μνλ₯Ό κ»μ§μ λ²κΈ°κ³ μ’
μμ±μ local/lib/python2.7
κ²½λ‘μ λ€μ μ°κ²°νμ¬ μμ§ν λ€μ ν΄νΉ μμ μ μκ°μ μ£Όμμ΅λλ€.
ln -s /opt/eff.org/certbot/venv/local/lib64/python2.7/dist-packages/cryptography /opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/cryptography
ln -s /opt/eff.org/certbot/venv/local/lib64/python2.7/dist-packages/cryptography-2.0.2.dist-info /opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/cryptography-2.0.2.dist-info
ln -s /opt/eff.org/certbot/venv/local/lib64/python2.7/dist-packages/cffi /opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/cffi
ln -s /opt/eff.org/certbot/venv/local/lib64/python2.7/dist-packages/cffi-1.10.0.dist-info /opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/cffi-1.10.0.dist-info
ln -s /opt/eff.org/certbot/venv/local/lib64/python2.7/dist-packages/_cffi_backend.so /opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/_cffi_backend.so
ln -s /opt/eff.org/certbot/venv/local/lib64/python2.7/dist-packages/.libs_cffi_backend /opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/.libs_cffi_backend
ln -s /opt/eff.org/certbot/venv/local/lib64/python2.7/dist-packages/zope.interface-4.1.3-py2.7-nspkg.pth /opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/zope.interface-4.1.3-py2.7-nspkg.pth
ln -s /opt/eff.org/certbot/venv/local/lib64/python2.7/dist-packages/zope.interface-4.1.3-py2.7.egg-info /opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/zope.interface-4.1.3-py2.7.egg-info
ln -s /opt/eff.org/certbot/venv/local/lib64/python2.7/dist-packages/zope/interface /opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/zope/interface
@HinchK λλ κ·Έκ²μ λν΄ μκ°νμ§λ§ λ€, μ λ§ ν΄νΉμ λλ€. λμ μ΄ μ루μ μ νμΈνμμμ€. https://github.com/certbot/certbot/issues/1680#issuecomment -358728515 μ΅μ Elastic beanstalkμμ μλνλμ§ νμΈν©λλ€.
@HinchK κ°μ¬ν©λλ€. κ·Έκ²μ (μΌμμ μΌλ‘) λλ₯Ό μν΄ κ³ μ³€μ΅λλ€. (AWS)
@HinchK , λΉμ μ μ루μ μ νλ₯νμ΅λλ€. κ°μ¬ ν΄μ.
κ·Έ @HinchK μ μ루μ μμ μ°¨μμ λ΄ AWS Linux μλ²λ₯Ό μ μ¬νκ² μμ νμ΅λλ€.
μ€λ λ΄ μΈμ¦μλ₯Ό μ λ°μ΄νΈνκ³ certbotμ΄ 0.19.0μμ 0.21.1λ‘ μ λ°μ΄νΈλμμ λ κ³ μ₯λ¬μ΅λλ€.
λ°©κΈ λ λ²μ§Έλ‘ λ¬Έμ μ λΆλͺμ³€μ΅λλ€. certbotμ΄ μΆ©λΆν κΆν μμ΄ μ κ·Έλ μ΄λλ₯Ό μ€νν λ λ¬Έμ κ° μλ κ² κ°μ΅λλ€. μ λ°μ΄νΈκ° μλμΌλ‘ μ€ν¨νκ³ certbotμ΄ μ€μ λ‘ μ€νμ μλν λ κ°μ§λ μλͺ»λ μνμ μννΈμ¨μ΄λ₯Ό λ¨κΉλλ€. λΌμ΄λΈλ¬λ¦¬ μ€μΉ/μ λ°μ΄νΈ 루ν΄μμ λ λμ μ€λ₯ κ°μ§λ λ―Έλμ νΌλμ λ°©μ§νλ λ° λμμ΄ λ μ μμ΅λλ€.
@utdrmac μ΄ μμ λ§ν¬λ μ루μ μ΄ μ΄ λ¬Έμ λ₯Ό ν΄κ²°νκΈ° μν΄ μΌνμ΅λλ€(νμ§λ§ 루νΈλ‘ μ€νν΄μΌ ν¨). certbotμ΄ λ°λ‘ μ§κΈ(AWS EC2μμ) 0.22.0μΌλ‘ μ κ·Έλ μ΄λνλ €κ³ ν λ λμΌν μ€λ₯κ° λ°μνμ΅λλ€.
λ€λ₯Έ AWS 리μ μμ μ΄ λ¬Έμ κ° λ€μ λ°μνμ΅λλ€. pipλ₯Ό ν΅ν΄ @utdrmac μ μ€μΉκ° μ μκ² https://github.com/certbot/certbot/issues/1680#issuecomment -358728515
λ΄ μΈμ€ν΄μ€ μ 체μ pip certbot λ‘€μμ λ΄ μ΄μ symlink ν΄κ²° λ°©λ²μ μλνμ§λ§ μμΌλ‘ μλνμ§ μμ μ μλ κ½€ μ΄μ²΄μ μΈ ν΄νΉμ΄μμ΅λλ€.
λλ κ°μ λ¬Έμ μ λΆλͺμ³€λ€. λλ₯Ό μν΄ κ·Έκ²μ ν΄κ²° ν κ²μ λ€μκ³Ό κ°μ΅λλ€.
/opt/eff.org/certbot/venv/local/bin/pip μνΈν μΈν°νμ΄μ€ μ€μΉ
λ€λ₯Έ λͺ¨λ κ²μ μλν ν @HinchK μ ν΄νΉμ΄ λλ₯Ό μν΄ μΌν μ μΌν λ°©λ²μ΄μμ΅λλ€.
λλ λν awls99λ₯Ό νμΈν μ μμ΅λλ€ - μ§λ λ©°μΉ λμ λμΌν λ¬Έμ κ° λ°μνμ¬ λͺ¨λ κ²μ μλνμ§λ§ λͺ¨λ μ루μ
μ΄ λ¬Έμ μ μν₯μ λ―ΈμΉμ§ μμμ΅λλ€.
@HinchK λ°©μμΌλ‘ λ¬Έμ κ° ν΄κ²°λμμ΅λλ€.
@gmegidish μ루μ μ μ μκ²
@HinchK μμ·μν¬ ! :-)
@gmegidish λ λ¨μλ€!!!
κ°μ¬ν©λλ€!!
/opt/eff.org/certbot/venv/local/bin/pip μνΈν μΈν°νμ΄μ€ μ€μΉ
λλ₯Ό μν΄ μΌνλ€!
@alex , μ¬κΈ°μ λ¬΄μ¨ μΌμ΄ μΌμ΄λκ³ μλμ§ μ μ μμ΅λκΉ?
νμ¬ https://github.com/certbot/certbot/blob/master/letsencrypt-auto-source/pieces/dependency-requirements.txt μμ μνΈν 2.0.2, pyOpenSSL 16.2.0 λ° κΈ°ν κ³ μ μ μ¬μ©νκ³
μ΄κ²μ΄ Amazon Linuxμ κ΄ν κ²μ΄λΌλ©΄ https://github.com/pypa/pip/issues/4464μΈ κ² κ°μ΅λλ€.
μ°Έμ‘°: @reaperhulk
μ΄λ΄,
CTRL-F μΉμμ λμΌλ‘ λλ₯Ό μν΄ μΌν μ루μ μ μ°Ύμμ΅λλ€.
μ΄ λ§ν¬μμ @utdrmacμ certbotμ pipμ ν¨κ» μ§μ μ€μΉν©λλ€.
https://github.com/certbot/certbot/issues/1680#issuecomment -358728515
λλ μ μ΄λ λλ₯Ό μν΄ μΌνλ€.
κ·Έλ¦¬κ³ μ€, pipλ₯Ό μ¬μ©νμ¬ certbot νλ¬κ·ΈμΈμ μ€μΉνμ¬ nginx( @bmw κΈ°μ€ )μ μλ ꡬμ±μ κ΄λ¦¬νλ λ°©λ²λ μκ°ν΄ 보μμμ€.
https://github.com/certbot/certbot/issues/1736#issuecomment -165189246
νμ΄μ λΉλλ€ !
νΈμ§: Amazon Linuxμλ μΈμ¦μλ₯Ό μ€μΉνκ³ μμ΅λλ€.
μ΄ λ¬Έμ λ₯Ό λ€μ ν΄κ²°νκ³ @eregnier μ κ²μλ¬Ό λ§ν¬μ λν κ°λ¨ν λ¨κ³λ₯Ό μννκ³ λ¨Όμ μλνμ΅λλ€. μ΄μ λ΄ crontabμ λ€μκ³Ό κ°μ΅λλ€.
0 0,12 * * * python -c 'import random; import time; time.sleep(random.random() * 3600)' && /usr/bin/certbot renew --no-bootstrap --nginx 1> /var/log/cerbot.log 2>&1
λλ μ€λ κ°μ λ¬Έμ κ° μμ΅λλ€. @HinchK μ μ루μ μ
ln -s /opt/eff.org/certbot/venv/local/lib64/python2.7/dist-packages/cryptography-2.0.2.dist-info /opt/eff.org/certbot/venv/local/lib/ python2.7/dist-packages/cryptography-2.0.2.dist-info
~μ μν΄
ln -s /opt/eff.org/certbot/venv/local/lib64/python2.7/dist-packages/cryptography-2.2.2.dist-info /opt/eff.org/certbot/venv/local/lib/ python2.7/dist-packages/cryptography-2.2.2.dist-info
맀λ ₯μΌλ‘ μμ©νμ΅λλ€.
λλ μ€λμ΄ λ¬Έμ μ μ§λ©΄νμ΅λλ€.
Amazon Linux AMI 4.4.30-32.54.amzn1.x86_64μ certbot 0.26.1μ λν ν΄κ²° λ°©λ²μ λ€μκ³Ό κ°μ΅λλ€.
CD /opt/eff.org/certbot/venv/lib64/python2.7
rmdir μ¬μ΄νΈ ν¨ν€μ§(λ΄ κ²½μ°μλ μ΄ λλ ν λ¦¬κ° λΉμ΄ μμ)
ln -s dist-packages μ¬μ΄νΈ ν¨ν€μ§
κ·Έκ² λ€μΌ, κ·Έκ²μ λλ₯Ό μν΄ μΌνμ΅λλ€.
@smartITNinja μ루μ μ΄ μ μκ²λ ν¨κ³Όκ° μλμ§ νμΈ
Amazon Linux 1 λλ 2μ λ¬Έμ κ° μμ΅λκΉ? Amazon Linux 2λΌλ©΄ certbot-auto
μ΄μμ EPEL7 ν¨ν€μ§λ₯Ό μ¬μ©ν μ μκ³ μ¬μ©ν΄μΌ ν©λλ€. μ΄λ¬ν ν¨ν€μ§λ₯Ό μ€μΉνλ λ°©λ²μ https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/SSL-on-an-instance.html#letsencryptμ μ€λͺ
λμ΄
@smartITNinja @lpkirby
ln dist-packages site-packages
νλ €κ³ ν λ hard link not allowed for directory
λ°μμ΅λλ€.
dist ν¨ν€μ§λ₯Ό μ¬μ΄νΈ ν¨ν€μ§μ μ λ§ μ΄μ¬ν μ°κ²°νμ΅λκΉ?
@saiday - fwiw - μλμ, μ¬λ³Όλ¦ λ§ν¬λ₯Ό νμ΅λλ€.
@bmw - ν₯λ―Έ
@bmw μλ§μ‘΄ 리λ μ€ 1
@saiday μ£μ‘ν©λλ€. νλ λ§ν¬κ° μλ "μννΈ λ§ν¬"μ λλ€. μ΄μ μ¬λ°λ₯Έ λ¨κ³λ₯Ό ν¬ν¨νμ¬ μ£Όμμ΄ μμ λμμ΅λλ€. κ°μ¬ ν΄μ!
/opt/eff.org/certbot/venv/lib64/python2.7
drwxr-xr-x 9 root root 4096 Jul 18 14:14 dist-packages
lrwxrwxrwx 1 root root 13 Jul 18 14:26 site-packages -> dist-packages
κ·Έ ν₯λ―Έ λ‘κ΅°μ. AWS λ¬Έμμ μΌλΆ μμΉμμλ Amazon Linux 2μ EPELμ μ€μΉνλ©΄ μ λλ€κ³ λ§νκ³ μΌλΆλ μ€μΉ λ°©λ²μ 보μ¬μ€λλ€.
λ. λΆννλ λλ Amazon Linux 2μ λν΄ μΆ©λΆν μμ§ λͺ»ν©λλ€. μ κ° λ§ν μ μλ κ²μ λ€μκ³Ό κ°μ΅λλ€.
certbot-auto
λ³΄λ€ μ΅μ OS ν¨ν€μ§λ₯Ό μ νΈν΄μΌ ν©λλ€.@smartITNinja thx, μ΄κ²μ λ΄ μλ§μ‘΄ EC2μμ λ΄ λ¬Έμ λ₯Ό ν΄κ²°νμ΅λλ€.
μ€λ Amazon Linux 1 EC2μμ μ λ₯Ό μν΄ μΌν @smartITNinja .
건배 π
μλν μ μΌν κ²μ @smartITNinja μ ν΄νΉμ΄μμ΅λλ€. λλ νμμ΄ λ¬Έμ μ λΆλͺμΉ©λλ€. certbot μ€ν¬λ¦½νΈλ μ΄λ₯Ό "μΊμΉ"νκ³ λ¬Έμ λ₯Ό ν΄κ²°νκ±°λ μ μ©ν μ€λ₯ λ©μμ§λ₯Ό μ 곡νλλ‘ μ λ°μ΄νΈν΄μΌ ν©λλ€. AWS EC2λ μ£Όμ λ°°ν¬νμ΄λ©° Let's Encryptλ μ¦μ μ¬μ©ν μ μμ΅λλ€. κΈ°κ°.
Amazon Linux AMIμμ λμΌν λ¬Έμ κ° λ°μνμ΅λλ€.
certbot λ컀 컨ν μ΄λλ₯Ό μ¬μ©νκΈ°λ§ νλ©΄ λ©λλ€. λͺ¨λ μ½ 90μ΄κ° κ±Έλ Έμ΅λλ€.
dockerκ° μ€μΉλμ΄ μ€ν μ€μ΄λΌκ³ κ°μ ν©λλ€.
docker pull certbot/certbot
docker run -it --rm --name certbot \
-v "/etc/letsencrypt:/etc/letsencrypt" \
-v "/var/lib/letsencrypt:/var/lib/letsencrypt" \
certbot/certbot \
certonly --manual --preferred-challenges dns-01 --agree-tos -d "example.com" -d "*.example.com" --server https://acme-v02.api.letsencrypt.org/directory
μ¬μ©νλ κΈ°λ³Έ AMIμμ μ΄ λ¬Έμ κ° λ°μνμ΅λλ€. λλμ΄ λ¬Έμ λ₯Ό ν΄κ²°νκΈ° μν΄ μ΄κ²μνμ΅λλ€. (symlinkλ λλ₯Ό μν΄ μλνμ§ μμμ΅λλ€)
sudo rm -Rf /opt/eff.org
sudo /opt/letsencrypt/letsencrypt-auto --help --debug
μ΄μ λ² μ΄μ€κ° κ³ μ λμμΌλ―λ‘ μμλλ‘ λͺ¨λ μΉ μ¬μ΄νΈμμ μ¬μ©ν μ μμ΅λλ€. μ΄ λ°©λ²μ μμ§ μΈμ¦μκ° μκ³ κΈ°λ°μμλ§ μμ νλ κ²½μ°μ μ’μ΅λλ€.
μ΄λ―Έ μΈμ¦μκ° μκ±°λ κ°±μ ν΄μΌ νλ κ²½μ°:
λ¨Όμ μλͺ»λ ν¨ν€μ§λ₯Ό μ κ±°ν©λλ€.
sudo rm -Rf /opt/eff.org
μ€ν μ€μΈ λͺ
λ Ήμ --debug
λ₯Ό μΆκ°ν©λλ€.
@gmegidish λλΆμ λμ μ΄ λλ μ루μ μ
unset PYTHON_INSTALL_LAYOUT
sudo rm -rf /opt/eff.org/certbot/
pip install cryptography interface
./certbot-auto renew -v --debug
/opt/letsencrypt/letsencrypt-auto --help
(μλ μ¬λΆ ν
μ€νΈ)
μ
λ°μ΄νΈνλ €λ©΄:
λ°©κΈ Amazon Linux 2μ κΈ°λ³Έ μ€μΉλ₯Ό μννμΌλ©° μ΅μ certbotμ΄ κ±°μ μ¦μ μλνμ΅λλ€. λ΄κ° μ€μΉν΄μΌ νλ μ μΌν κ²μ AWS yum reposμ python-virtualenvμμ΅λλ€.
Amazon Linux 1μ κ²½μ° #6505 λ° Amazon Linux 2μ κ²½μ° #6506μμ μΆμ μ§μ λ° κΆμ₯ μ€μΉ κ²½λ‘μ μ°¬μ±νμ¬ λ§κ°ν©λλ€.
μ΄κ²μ νΈλ¦μ μννμ΅λλ€: sudo /opt/eff.org/certbot/venv/local/bin/pip install cryptography interface zope
μ΄κ²μ νΈλ¦μ μννμ΅λλ€:
sudo /opt/eff.org/certbot/venv/local/bin/pip install cryptography interface zope
μ΄κ²μ λν λλ₯Ό μν΄ νΈλ¦μνμ΅λλ€.
κ·Έλ¦¬κ³ ... μ΅μ certbot μ λ°μ΄νΈκ° λ€μκ³Ό μΆ©λνμ΅λλ€.
Requesting to rerun ./certbot-auto with root privileges...
Upgrading certbot-auto 0.40.0 to 0.40.1...
Replacing certbot-auto...
Creating virtual environment...
Installing Python packages...
Installation succeeded.
Traceback (most recent call last):
File "/opt/eff.org/certbot/venv/bin/letsencrypt", line 7, in <module>
from certbot.main import main
File "/opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/certbot/main.py", line 10, in <module>
import josepy as jose
File "/opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/josepy/__init__.py", line 41, in <module>
from josepy.interfaces import JSONDeSerializable
File "/opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/josepy/interfaces.py", line 7, in <module>
from josepy import errors, util
File "/opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/josepy/util.py", line 7, in <module>
import OpenSSL
File "/opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/OpenSSL/__init__.py", line 8, in <module>
from OpenSSL import crypto, SSL
File "/opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/OpenSSL/crypto.py", line 12, in <module>
from cryptography import x509
ImportError: No module named cryptography
λ€μμ μ¬μ©νμ¬ μμ νμ΅λλ€.
sudo /opt/eff.org/certbot/venv/local/bin/pip install cryptography interface zope
κ·Έλ¦¬κ³ κ·Έκ²μ λ΄κ° λ€μ μΌνκ² λ§λ€μμ΅λλ€ ... μλ§λ μλ μ λ°μ΄νΈκ°λμ΄μλ μλ©λκΉ?
κ·Έλ¦¬κ³ κ·Έκ²μ λ΄κ° λ€μ μΌνκ² λ§λ€μμ΅λλ€ ... μλ§λ μλ μ λ°μ΄νΈκ°λμ΄μλ μλ©λκΉ?
μ΄λ¬ν λμμ μνλ©΄ νλκ·Έ --no-self-upgrade
λ₯Ό μ¬μ©ν μ μμ§λ§ 보μμ μν λͺ¨λ λ³κ²½ μ¬νμ΄λ Let's Encryptμ μλ²μ νΈνλλλ‘ μ μ§νλ λ³κ²½ μ¬νμ λͺ¨λ μ ν ν΄μ ν μ μμμ λͺ
μ¬νμμμ€.
λν Amazon Linuxμμ νλκ·Έ μμ΄ certbot-autoλ₯Ό μ²μ μ€ννλ©΄ λ€μ λ©μμ§μ ν¨κ» μ’ λ£λ©λλ€.
FATAL: Amazon Linux support is very experimental at present...
if you would like to work on improving it, please ensure you have backups
and then run this script again with the --debug flag!
λ³κ²½λ λκΉμ§(https://github.com/certbot/certbot/issues/6505μμ μΆμ ) μ΄λ¬ν λ¬Έμ κ° κ³μ λ°μν κ²μΌλ‘ μμν΄μΌ νλ€κ³ μκ°ν©λλ€.
Ec2 Amazon Linux AMI μΈμ€ν΄μ€μ© μ루μ μ΄ μμ΅λλ€.
venvμ λͺ¨λ ν¨ν€μ§λ₯Ό μ€μΉν©λλ€.
/opt/eff.org/certbot/venv/bin/pip2 install cryptography zope interface
/opt/eff.org/certbot/venv/bin/pip2 install --upgrade pip
λ€μμΌλ‘ λκΈ°ν lib64/ λ° lib/ ν΄λκ° νμν©λλ€.
rsync -avz /opt/eff.org/certbot/venv/lib64/python2.7/dist-packages/ /opt/eff.org/certbot/venv/lib/python2.7/dist-packages/
μν:
/usr/local/bin/certbot-auto certonly --debug --webroot
λ μΈμ€ν΄μ€ AMIμμ λλ₯Ό μν΄ μΌνκ³ μμ΅λλ€. =)
κ·Έλ§ν κ°μΉκ° μκΈ° λλ¬Έμ certbot-auto
μ€ν¬λ¦½νΈλ₯Ό ν¬κΈ°νκ³ λ€μ λ¨κ³μ λ°λΌ Amazon Linuxμμ μλνλλ‘ νμ΅λλ€.
pip install -y python36 python36-devel python36-tools augeas-libs libffi-devel
pip-3.6 install certbot certbot-dns-route53
λλ κ·Έκ²μ΄ κΆμ₯λμ§ μλλ€λ κ²μ μκ³ μμ§λ§ κ·Έκ²μ λλ₯Ό μν΄ μΌνμ΅λλ€!
그건 κ·Έλ κ³ , Amazon Linux 2μμλ ν¨ν€μ§ κ΄λ¦¬μμ μμ΅λλ€.
amazon-linux-extras install epel
yum -y install certbot certbot-dns-route53
ν΄κ²°μ±
μ EPELμ νμ±ννκ³ sudo yum-config-manager --enable epel
λ₯Ό μ€ννλ κ²μ
λλ€. μ΄λ certbot λ¬Έμ/μ§μΉ¨ λ° aws λ¬Έμμμ λͺ¨λ μΈκΈλ©λλ€.
λ΄ μλ²μ certbot-auto μ€ν¬λ¦½νΈκ° μλμΌλ‘ μ
λ°μ΄νΈλμκ³ (μ΄λ κ² ν μ€ λͺ°λκ³ μ΄μ --no-self-upgrade
νλκ·Έμ λν΄ μκ³ μμ΅λλ€) "ImportError: No module named cryptography" λ¬Έμ κ° λ€μ λ°μνμ΅λλ€.
https://aws.nz/best-practice/letsencrypt-amazon-linux/μμ μλνλ μ루μ μ μ°Ύμμ΅λλ€.
κ°μ₯ μ μ©ν λκΈ
@utdrmac λλ μ μΈμ¦μλ₯Ό λ°°ν¬νκΈ° μ μ κ°μ μ€λ₯λ₯Ό λ§λ¬μ΅λλ€. κ·νμ μ견μ μνλ₯Ό κ»μ§μ λ²κΈ°κ³ μ’ μμ±μ
local/lib/python2.7
κ²½λ‘μ λ€μ μ°κ²°νμ¬ μμ§ν λ€μ ν΄νΉ μμ μ μκ°μ μ£Όμμ΅λλ€.