server{ .... location ~ /.well-known { allow all; } }
server { listen 443; # 原先应该是 80
ssl on ssl_certificate /etc/letsencrypt/live/doruby.com/fullchain.pem; ssl_certificate_key /etc/letsencrypt/live/doruby.com/privkey.pem;