Which names would you like to activate HTTPS for?
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
1: armor-computers.com
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Select the appropriate numbers separated by commas and/or spaces, or leave input
blank to select all options shown (Enter 'c' to cancel): 1
Requesting a certificate for armor-computers.com
Certbot failed to authenticate some domains (authenticator: apache). The Certificate Authority reported these problems:
Domain: armor-computers.com
Type: unauthorized
Detail: 2600:3c00::f03c:93ff:fe37:3e51: Invalid response from http://armor-computers.com/.well-known/acme-challenge/pMm9Gybp4M1Vlaxb-q3IneQiD-TyXBq2ChoYOLZwBqs: 404
Hint: The Certificate Authority failed to verify the temporary Apache configuration changes made by Certbot. Ensure that the listed domains point to this Apache server and that it is accessible from the internet.
Some challenges have failed.
Ask for help or search for solutions at https://community.letsencrypt.org. See the logfile /var/log/letsencrypt/letsencrypt.log or re-run Certbot with -v for more details.
My web server is (include version):
Server version: Apache/2.4.41 (Ubuntu)
Server built: 2022-06-14T13:30:55
The operating system my web server runs on is (include version):
Ubuntu 20.04.3 LTS
My hosting provider, if applicable, is:
Linode
I can login to a root shell on my machine (yes or no, or I don't know):
yes
I'm using a control panel to manage my site (no, or provide the name and version of the control panel):
no
The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot):
<VirtualHost *:80>
# The ServerName directive sets the request scheme, hostname and port that
# the server uses to identify itself. This is used when creating
# redirection URLs. In the context of virtual hosts, the ServerName
# specifies what hostname must appear in the request's Host: header to
# match this virtual host. For the default virtual host (this file) this
# value is not decisive as it is used as a last resort host regardless.
# However, you must set it for any further virtual host explicitly.
#ServerName www.example.com
ServerAdmin webmaster@localhost
DocumentRoot /var/www/html
# Available loglevels: trace8, ..., trace1, debug, info, notice, warn,
# error, crit, alert, emerg.
# It is also possible to configure the loglevel for particular
# modules, e.g.
#LogLevel info ssl:warn
ErrorLog ${APACHE_LOG_DIR}/error.log
CustomLog ${APACHE_LOG_DIR}/access.log combined
# For most configuration files from conf-available/, which are
# enabled or disabled at a global level, it is possible to
# include a line for only one particular virtual host. For example the
# following line enables the CGI configuration for this host only
# after it has been globally disabled with "a2disconf".
#Include conf-available/serve-cgi-bin.conf
RewriteEngine off
RewriteCond %{SERVER_NAME} =armor-computers.com
RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,NE,R=permanent]
</VirtualHost>
# vim: syntax=apache ts=4 sw=4 sts=4 sr noet
Not that I know of.
It's a bare ubuntu installation with apache installed.
the site is accessible on port 80, so connections aren't being terminated as far as I can tell.
I do run UFW/iptables but required ports have been punched thru
I think we have two different meanings for "termination".
In this context, it means "where the connection ends" [like the last train stop] - not terminate as killed [like a firewall blocking/stopping it].
I feel really stupid for saying this, but I don't really understand the question.
The server is apache2 running on a VPS from linode.com
The actual physical location of the datacenter its hosted is Dallas, Texas.
All http requests are handled by apache2 only.
Could this be one of those weird Apache things? Port 80 looks like an IP based VirtualHost. Maybe the built-in Apache server is being used instead? I can mostly reproduce but not quite so could be wrong.
Should try adding ServerName to 000-default-conf. Rerun the -t -D DUMP_VHOSTS after and try again
The file you showed has a redirection when the servername is "armor-computers.com"
I showed how when I accessed that name (via IPv4 and IPv6) no such redirection was being offered to me.
armorcom@localhost:~$ apachectl -t -D DUMP_VHOSTS
AH00558: apache2: Could not reliably determine the server's fully qualified domain name, using ::1. Set the 'ServerName' directive globally to suppress this message
VirtualHost configuration:
*:443 armor-computers.com (/etc/apache2/sites-enabled/000-default-le-ssl.conf:2)
*:80 ::1 (/etc/apache2/sites-enabled/000-default.conf:1)
Okay, I updated the file with your condensed version above
Then I restarted the apache service
then dumped the vhosts again
armorcom@localhost:~$ sudo vim /etc/apache2/sites-enabled/000-default.conf
armorcom@localhost:~$ sudo service apache2 restart
armorcom@localhost:~$ apachectl -t -D DUMP_VHOSTS
AH00558: apache2: Could not reliably determine the server's fully qualified domain name, using ::1. Set the 'ServerName' directive globally to suppress this message
VirtualHost configuration:
*:443 armor-computers.com (/etc/apache2/sites-enabled/000-default-le-ssl.conf:2)
*:80 _ (/etc/apache2/sites-enabled/000-default.conf:1)
