zmeventnotification and letsencrypt permission issues

Discussion topics related to mobile applications for ZoneMinder
Post Reply
SkippyDo
Posts: 195
Joined: Mon Nov 20, 2017 6:49 pm

zmeventnotification and letsencrypt permission issues

Post by SkippyDo » Fri Sep 18, 2020 11:42 am

Original installation makes note of permission issues with letsencrypt. I have found that permission issues pop back up every time that letsencrypt renewal occurs: zmeventnotification.pl exits with a permission denied error. Is there a way to resolve this w/o having to discover the issue and manually correct (change permission on private key)?

OS: Debian 10.

Owner needs to be www-data (letsencrypt creates new private keys with owner "root," mode 0700).

User avatar
asker
Posts: 1412
Joined: Sun Mar 01, 2015 12:12 pm

Re: zmeventnotification and letsencrypt permission issues

Post by asker » Sun Sep 20, 2020 11:29 am

This seems to be a recurring topic in letsencrypt forums. I haven’t research or tried but when I did a search I came up with posts that talk about a deploy script for LE that basically changes permissions. These scripts get triggered by LE automatically when certs are renewed.

There are many posts - I read this https://community.letsencrypt.org/t/how ... ces/2690/9
--
My collection of ZoneMinder learnings:
https://wiki.zoneminder.com/Various_ZM_thoughts

SkippyDo
Posts: 195
Joined: Mon Nov 20, 2017 6:49 pm

Re: zmeventnotification and letsencrypt permission issues

Post by SkippyDo » Sun Sep 20, 2020 12:26 pm

Many thanks! That got me pointed in the right direction.

More info on letsencrypt and cert renewals:

https://certbot.eff.org/docs/using.html ... rtificates

Looks like I only need to create a simple script to change the owner on the newly created privkey file (to www-data) and locate the script in the 'deploy' directory.

Post Reply

Who is online

Users browsing this forum: No registered users and 3 guests