my nginx server config for the virtual domain coreyholzer.com is as follows:
server {
listen 443 ssl;
server_name coreyholzer.com www.coreyholzer.com *.coreyholzer.com;
ssl on;
ssl_certificate /etc/letsencrypt/live/coreyholzer.com/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/coreyholzer.com/privkey.pem;
ssl_protocols SSLv3 TLSv1 TLSv1.1 TLSv1.2;
ssl_session_cache shared:SSL:20m;
ssl_session_timeout 4h;
ssl_handshake_timeout 30s;
…
}
My Apache configuration is as follows:
<VirtualHost *:443>
…
SSLEngine off
Include /etc/letsencrypt/options-ssl-apache.conf
SSLCertificateFile
/etc/letsencrypt/live/coreyholzer.com/fullchain.pem
/etc/letsencrypt/live/coreyholzer.com/fullchain.pem
SSLCertificateKeyFile
/etc/letsencrypt/live/coreyholzer.com/privkey.pem
SSLCipherSuite HIGH:!MEDIUM:!aNULL:!MD5:!RC4
SSLProtocol -All +TLSv1.2
The live certs are symbolically linked as follows:
cert.pem -> …/…/archive/coreyholzer.com/cert2.pem
chain.pem -> …/…/archive/coreyholzer.com/chain2.pem
fullchain.pem -> …/…/archive/coreyholzer.com/fullchain2.pem
privkey.pem -> …/…/archive/coreyholzer.com/privkey2.pem
Trying to regenerate the certs now tells me I generated them too many times.
When I look at the cert details it says the server is virtualserver.me.
I am working through your other suggestions now. I will reply with more details once I have them.