DirectAdmin 1.50.0 has been released

[DirectAdmin Support]

Hello,

We're pleased to announce the release of DirectAdmin 1.50.0

Version: 1.50.0

This is a major release with numerous new features and fixes.
The full list can be Found Here

New Features

• Global Custom Templates for Apache/Nginx which will be inserted into the CUSTOM tokens.
• Admin Level Restores can restore with SUPER privileges.
• LetsEncrypt automatic 1-click install of FREE SSL certificates.
• New Branding Template which can be used for all message footers.
• X-Forwarded-For Header parsing, so logs show true client IP in the case of proxies.
• Ability to send your own Admin Notices to the Message System
• Per-User override of the show_db_usage option via user.conf.
• Restore checkbox for original SPF values
• Direct ~/imap backup without copy (disabled by default for now)
• RoundCube is the new default webmail client.

plus many more.

Bugfixes

• FTPS with curl to create missing directories
• Added DH & EC ciphers for the latest protocols.
• MariaDB 10.1 requires CREATE USER before GRANT
• DNSSEC: increase serial before re-signing
• "localhost" removed from A and AAAA defaults
• Not restoring sub-domains, if the the Domain Directory is excluded from the backup
• Debian 8: binaries will now be dynamic
• Ensure newline between combined nginx certificates
• Show All Users: E-Mail Sends was displaying first value for all Users.
• Ability to manually add Usernames/E-Mails to the BFM skip list

Plus various other fixes.

Have fun!

John

 

[vlijmenlive]

Hello,

We're pleased to announce the release of DirectAdmin 1.50.0

Version: 1.50.0

New Features

• LetsEncrypt automatic 1-click install of FREE SSL certificates.

Plus various other fixes.

Have fun!

John

This is just great! Now I'm just wondering (if possible) how to added subdomains to the cert. Can we just comma seperate them? Don't want to test it too much due too the rate limit.

 

[vancanneyt]

Thx for the update.
I've enabled lets encrypt but on 'user level' the SSL Certificates pages says that i need an owned IP before i can proceed

'You can only add a certificate if you own the ip you are using'

Followed the help link http://help.directadmin.com/item.php?id=261 but i only have one IP so the link to that was http://www.directadmin.com/technotes.html#ssl but the mentioned lines are already in my virtual hostconfig (http-vhosts.conf).
Any idea how to fix?

 

[DirectAdmin Support]

SSL rules haven't changed, but you can enable SNI if your OS supports it (most new ones do)
http://www.directadmin.com/features.php?id=1100

John

 

[Webgangster]

I have enabled the SSL functie (Lets Encrypt), but there is no checkbox on the page with 'Free & automatic certificate from Let's Encrypt'.
In Users\ssl.htm is no text shown.

-----------

|*if LETSENCRYPT="1"|
<br><input type=radio name=request value="letsencrypt" disabled>Free & automatic certificate from <a class='listtitle' target=_blank href="https://letsencrypt.org/">Let's Encrypt</a></td>
|*endif|

 

[Frej]

updated and did this as you recommended
cd /usr/local/directadmin/custombuild
./build update
./build rewrite_confs

still got this issue
Challenge is invalid. Details: Invalid response
john sent you email about the issue

 

[Maartenz]

I had to set letsencrypt=2, with 1 it would not work.

Is it possible to request a SSL certificate for my subdomains?

 

[zEitEr]

Works fine for me with letsencrypt=1

# grep well /etc/httpd/conf/extra/httpd-alias.conf
Alias /.well-known /var/www/html/.well-known

ACTION REQUIRED
You must have the .well-known Alias pointing to /var/www/html/.well-known, so update your CustomBuild configs:
cd /usr/local/directadmin/custombuild
./build update
./build rewrite_confs

http://www.directadmin.com/features.php?id=1828

Is it possible to request a SSL certificate for my subdomains?

Add you subdomain as a domain with its own public_html.

 

[Frej]

im on nginx so it still fails to create certificate

 

[zEitEr]

With letsencrypt=1?
Do you have /var/www/html/.well-known ?
The Alias in nginx configs?

 

[Frej]

nah with =2
and ive made sure to restart DA- i want my ssl to be on /home/admin/username/public_html

 

[Maartenz]

Add you subdomain as a domain with its own public_html.

Is there no other way? It would be a lot easier if DirectAdmin would request a SSL certificate for the subdomains as well. The third-party plugin for Let's Encrypt support in DirectAdmin was able to do this.

 

[zEitEr]

Directadmin does not allow to install separate SSL certs for subdomains.

Whether you use

letsencrypt=1 with /var/www/html/.well-known
or letsencrypt=2 with /home/user/domains/domain.com/public_html/.well-known

it regulates only where a file will be set which is used once for domain ownership validation. All the certs are stored as always in /usr/local/directadmin/data/users/<user>/domains/

 

[Frej]

yes i know and thats the issue it doesnt create certificate at all there
the folders are there

Getting challenge from acme-server...
Waiting for domain verification...
Challenge is invalid. Details: Invalid response from http://domain/.well-known/acme-challenge/M68DRuvdR9DhC3WGWDP7IrmCnN6vFOAfzO7TOZ4o3to [ip]: 404. Exiting...

Directadmin does not allow to install separate SSL certs for subdomains.

Whether you use

letsencrypt=1 with /var/www/html/.well-known
or letsencrypt=2 with /home/user/domains/domain.com/public_html/.well-known

it regulates only where a file will be set which is used once for domain ownership validation. All the certs are stored as always in /usr/local/directadmin/data/users/<user>/domains/

 

[zEitEr]

What error do you get?

Currently I see an error on one server of the following kind:

Command::doCommand(/CMD_SSL)Domain domain.com  defaultdomain=yes usertype=2 multiple_ips=0 enable_ssl_sni=1
Dynamic(api=0, error=1):
        text='Cannot Execute Your Request'
        result='Getting challenge for domain.com from acme-server...<br>
Waiting for domain verification...<br>
Challenge is invalid. Details: Could not connect to http://domain.com/.well-known/acme-challenge/R4eaNjBi9gwB6Tio-Ui3qtvi4HIStPU46gvsX8RFHKI. Exiting...

at the same too 200 code in logs:

66.133.109.36 - - [21/Feb/2016:18:50:36 +0600] "GET /.well-known/acme-challenge/R4eaNjBi9gwB6Tio-Ui3qtvi4HIStPU46gvsX8RFHKI HTTP/1.1" 200 108 "-" "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)"

What might it be caused by?

 

[wattie]

letsencrypt fails with me with:

Getting challenge for cphpvb.net from acme-server...
[: : bad number
[: : bad number
/usr/local/directadmin/scripts/letsencrypt.sh: cannot create /var/www/html/.well-known/acme-challenge/: Is a directory
[: -ne: unexpected operator
Waiting for domain verification...
rm: /var/www/html/.well-known/acme-challenge/: is a directory
Challenge is . Details: . Exiting...

p.s. both =1 and =2 options

 

[Frej]

wheres the log u found it from

 

[zEitEr]

The first ouput is directadmin's... debug mode. The same text you can see in browser.

The second output that's Domain's apache/nginx logs from one of my servers.

Tested with two domains on nginx+apache server.

p.s. Other server is fine.

 

[Frej]

heres the result http://pastebin.com/xCYS4KqL

 

[Maartenz]

Directadmin does not allow to install separate SSL certs for subdomains.

AFAIK Let's Encrypt allows you to request a SSL certificate for your main domain and subdomains. So it should be possible.