Page 1 of 1
zmeventnotification and letsencrypt permission issues
Posted: Fri Sep 18, 2020 11:42 am
by SkippyDo
Original installation makes note of permission issues with letsencrypt. I have found that permission issues pop back up every time that letsencrypt renewal occurs: zmeventnotification.pl exits with a permission denied error. Is there a way to resolve this w/o having to discover the issue and manually correct (change permission on private key)?
OS: Debian 10.
Owner needs to be www-data (letsencrypt creates new private keys with owner "root," mode 0700).
Re: zmeventnotification and letsencrypt permission issues
Posted: Sun Sep 20, 2020 11:29 am
by asker
This seems to be a recurring topic in letsencrypt forums. I haven’t research or tried but when I did a search I came up with posts that talk about a deploy script for LE that basically changes permissions. These scripts get triggered by LE automatically when certs are renewed.
There are many posts - I read this
https://community.letsencrypt.org/t/how ... ces/2690/9
Re: zmeventnotification and letsencrypt permission issues
Posted: Sun Sep 20, 2020 12:26 pm
by SkippyDo
Many thanks! That got me pointed in the right direction.
More info on letsencrypt and cert renewals:
https://certbot.eff.org/docs/using.html ... rtificates
Looks like I only need to create a simple script to change the owner on the newly created privkey file (to www-data) and locate the script in the 'deploy' directory.