Fix letsencrypt by using a separate port than the proxy

nginx/conf/nginx.conf

@@ -42,7 +42,7 @@ http {
       # In any case, enable the proxy for certbot if the flavor is letsencrypt
       {% if TLS_FLAVOR == 'letsencrypt' %}
       location ^~ /.well-known/acme-challenge/ {
-          proxy_pass http://localhost:8000;
+          proxy_pass http://localhost:8008;
       }
       {% endif %}
 

nginx/letsencrypt.py

@@ -12,7 +12,7 @@ command = [
     "-m", "{}@{}".format(os.environ["POSTMASTER"], os.environ["DOMAIN"]),
     "certonly", "--standalone",
     "--cert-name", "mailu",
-    "--preferred-challenges", "http", "--http-01-port", "8000",
+    "--preferred-challenges", "http", "--http-01-port", "8008",
     "--keep-until-expiring",
     "--rsa-key-size", "4096",
     "--config-dir", "/certs/letsencrypt",