Certificate works great but, another cert appears from unknown domain


#1

My domain is: https://poursafe.com, hosted on a dedicated IP

I ran this command: https://www.ssllabs.com to check SSL status which my WP woocommerce plugin is reporting misconfigured

It produced this output: Certificate #2: RSA 2048 bits (SHA256withRSA) No SNI
The unknown domain shown is: 4cleanmty.info www.4cleanmty.info MISMATCH

My web server is (include version): Nginx

The operating system my web server runs on is (include version): Centos 7

My hosting provider, if applicable, is: Digital Ocean

I can login to a root shell on my machine (yes or no, or I don’t know): Yes

I’m using a control panel to manage my site (no, or provide the name and version of the control panel): cpanel

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot): certbot 0.29.1


#2

That’s the certificate that’s shown to old browsers that don’t support SNI.

What is the content of that report?


#3

This typically happens on shared hosting systems.
[where the “default” cert is from the HSP]

But you say:

So there must be a default vhost config that is using that #2 cert.

If you need to have all vhosts serve just the one cert for your plugin to work, then you need to start by reviewing the web server config and replace all certs with yours.
Or if this IP only serves the one site, you might as well replace all vhosts with just one vhost config.
[maybe down to one for port 80 and one for port 443]

You can review the entire nginx config with the output of:
nginx -T

or you can search the default nginx directory for SSL certificate inclusions with:
grep -ri ssl_cert /etc/nginx