Certificate randomly starts and stops working

Hello,

I recently installed a Let’s Encrypt certificate on my domain: ultifree.ml. At times it seems to work normally, however, at seemingly random moments the Let’s Encrypt certificate vanishes and is replaced by a self-signed certificate, creating a privacy error in chrome. I’ve tried the website on different devices and such, yet the error still persists. Have I done something wrong in the installation? Or did I do something wrong with the certificate?

I generated the certificate using sslforfree.com

Thanks!

Hi @TimurR

I see a self signed certificate.

You have created 3 Letsencrypt certificates ( https://check-your-website.server-daten.de/?q=ultifree.ml#ct-logs )

Issuer not before not after Domain names LE-Duplicate next LE
Let’s Encrypt Authority X3 2019-07-09 2019-10-07 status.ultifree.ml - 1 entries duplicate nr. 1
Let’s Encrypt Authority X3 2019-07-09 2019-10-07 ultifree.ml, www.ultifree.ml - 2 entries duplicate nr. 2
Let’s Encrypt Authority X3 2019-07-08 2019-10-06 ultifree.ml, www.ultifree.ml - 2 entries duplicate nr. 1

but checking your domain there is a self signed:

Domainname Http-Status redirect Sec. G
http://ultifree.ml/
185.27.134.208 200 0.080 H
http://www.ultifree.ml/
185.27.134.208 200 0.076 H
https://ultifree.ml/
185.27.134.208 200 0.470 N
Certificate error: RemoteCertificateNameMismatch, RemoteCertificateChainErrors
small content:
<html><body><script type="text/javascript" src="/aes.js" ></script><script>function toNumbers(d){var e=[];d.replace(/(..)/g,function(d){e.push(parseInt(d,16))});return e}function toHex(){for(var d=[],d=1==arguments.length&&arguments[0].constructor==Array?arguments[0]:arguments,e="",f=0;f<d.length;f++)e+=(16>d[f]?"0":"")+d[f].toString(16);return e.toLowerCase()}var a=toNumbers("f655ba9d09a112d4968c63579db590b4"),b=toNumbers("98344c2eee86c3994890592585b49f80"),c=toNumbers("1c167956de3e1144501be14a7c38a53a");document.cookie="__test="+toHex(slowAES.decrypt(c,2,a,b))+"; expires=Thu, 31-Dec-37 23:55:55 GMT; path=/"; location.href="https://ultifree.ml/?i=1";</script><noscript>This site requires Javascript to work, please enable Javascript in your browser or use a browser with Javascript support</noscript></body></html>

|
||
|• https://www.ultifree.ml/
185.27.134.208|200||0.467|N|
|Certificate error: RemoteCertificateNameMismatch, RemoteCertificateChainErrors|

And the included JavScript (visible checking http://ultifree.ml/.well-known/acme-challenge/random-filename) looks like your hoster blocks /.well-known/acme-challenge.

So it may be impossible that you install the certificate.

What’s your configuration?


Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is:

I ran this command:

It produced this output:

My web server is (include version):

The operating system my web server runs on is (include version):

My hosting provider, if applicable, is:

I can login to a root shell on my machine (yes or no, or I don’t know):

I’m using a control panel to manage my site (no, or provide the name and version of the control panel):

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot):

This aes.js script is from your hoster. And blocks some things, normally validating certificates via /.well-known/acme-challenge.

So your hoster doesn’t support Letsencrypt certificates.

  • Ask your hoster
  • switch to another provider.

That’s cPanel. So you should use your integrated cPanel solution, not sslforfree.