AutoSSL fails when httpd runs as "nobody"

JonGold

Registered
Feb 7, 2017
1
0
1
Brooklyn
cPanel Access Level
Root Administrator
I recently inherited a server running CPanel/WHM. I was able to successfully install the AutoSSL plugin, but when running it I routinely received 404 errors. I read many posts on here about 404 errors with AutoSSL, but in my case, it's because httpd is running as "nobody", and the AutoSSL script sets the permissions on the "acme-challenge" folder to "750", so the "nobody" user can't read them.

I tried settings chattr +i to prevent the script from changing the permissions after I manually set them to 755, but autossl_check fails when it can't set the permission on the "acme-challenge" folder.

How do I work around this?
 

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,908
2,218
463
Hello,

The following case was included in cPanel version 62.0.1 to address this issue:

Fixed case CPANEL-10642: Cpanel::SSL::DCV set wrong permissions on acme-challenge.

Could you verify which version of cPanel is installed on this system? You can check with the following command:

Code:
cat /usr/local/cpanel/version

If you are using a version newer than 62.0.1, you should be able to remove the immutable attribute on the script to correct the problem.

Thank you.