Certificate randomly starts and stops working

Hello,

I recently installed a Let’s Encrypt certificate on my domain: ultifree.ml. At times it seems to work normally, however, at seemingly random moments the Let’s Encrypt certificate vanishes and is replaced by a self-signed certificate, creating a privacy error in chrome. I’ve tried the website on different devices and such, yet the error still persists. Have I done something wrong in the installation? Or did I do something wrong with the certificate?

I generated the certificate using sslforfree.com

Thanks!

Hi @TimurR

I see a self signed certificate.

You have created 3 Letsencrypt certificates ( https://check-your-website.server-daten.de/?q=ultifree.ml#ct-logs )

Issuer not before not after Domain names LE-Duplicate next LE
Let’s Encrypt Authority X3 2019-07-09 2019-10-07 status.ultifree.ml - 1 entries duplicate nr. 1
Let’s Encrypt Authority X3 2019-07-09 2019-10-07 ultifree.ml, www.ultifree.ml - 2 entries duplicate nr. 2
Let’s Encrypt Authority X3 2019-07-08 2019-10-06 ultifree.ml, www.ultifree.ml - 2 entries duplicate nr. 1

but checking your domain there is a self signed:

Domainname Http-Status redirect Sec. G
http://ultifree.ml/
185.27.134.208 200 0.080 H
http://www.ultifree.ml/
185.27.134.208 200 0.076 H
https://ultifree.ml/
185.27.134.208 200 0.470 N
Certificate error: RemoteCertificateNameMismatch, RemoteCertificateChainErrors
small content:
<html><body><script type="text/javascript" src="/aes.js" ></script><script>function toNumbers(d){var e=[];d.replace(/(..)/g,function(d){e.push(parseInt(d,16))});return e}function toHex(){for(var d=[],d=1==arguments.length&&arguments[0].constructor==Array?arguments[0]:arguments,e="",f=0;f<d.length;f++)e+=(16>d[f]?"0":"")+d[f].toString(16);return e.toLowerCase()}var a=toNumbers("f655ba9d09a112d4968c63579db590b4"),b=toNumbers("98344c2eee86c3994890592585b49f80"),c=toNumbers("1c167956de3e1144501be14a7c38a53a");document.cookie="__test="+toHex(slowAES.decrypt(c,2,a,b))+"; expires=Thu, 31-Dec-37 23:55:55 GMT; path=/"; location.href="https://ultifree.ml/?i=1";</script><noscript>This site requires Javascript to work, please enable Javascript in your browser or use a browser with Javascript support</noscript></body></html>

|
||
|• https://www.ultifree.ml/
185.27.134.208|200||0.467|N|
|Certificate error: RemoteCertificateNameMismatch, RemoteCertificateChainErrors|

And the included JavScript (visible checking http://ultifree.ml/.well-known/acme-challenge/random-filename) looks like your hoster blocks /.well-known/acme-challenge.

So it may be impossible that you install the certificate.

What’s your configuration?


Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is:

I ran this command:

It produced this output:

My web server is (include version):

The operating system my web server runs on is (include version):

My hosting provider, if applicable, is:

I can login to a root shell on my machine (yes or no, or I don’t know):

I’m using a control panel to manage my site (no, or provide the name and version of the control panel):

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot):

This aes.js script is from your hoster. And blocks some things, normally validating certificates via /.well-known/acme-challenge.

So your hoster doesn’t support Letsencrypt certificates.

  • Ask your hoster
  • switch to another provider.

That’s cPanel. So you should use your integrated cPanel solution, not sslforfree.

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.