My web server is (include version): ubuntu server 20.04 apache Server version: Apache/2.4.41 (Ubuntu)
Server built: 2020-04-13T17:19:17
The operating system my web server runs on is (include version): Linux ubuntu server 20.04
My hosting provider, if applicable, is: my home server
I can login to a root shell on my machine (yes or no, or I don’t know): yes
I’m using a control panel to manage my site (no, or provide the name and version of the control panel): no
The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot):certbot --version
certbot 0.40.0
Do I need to add Listen 80, 443 to every /etc/apache/sites…/*.conf file? Or could it be just a problem in this. Most unlikely, but?
Hello @leskgr
Port 80 should be listening globally in most cases. It allows Certbot to convince the CA that you are requesting a certificate for a domain under your control…
Hope this Helps.
Rip
I believe I have port 80 and 443 open all times (clean install ubuntu server 20.04).
netstat -tulpn | grep --color :80
tcp6 0 0 :::80 :::* LISTEN 1368/apache2
root@lilaum-server:/etc/apache2/sites-available# netstat -tulpn | grep --color :443
tcp6 0 0 :::443 :::* LISTEN 1368/apache2
What must I do to successful certbot?
Is this an apache error? Please guide me through this issue. I will be very thankful.
Please help me, thanks in advance, sincerely, Grega
IMHO “Strict-Transport-Security” and “Content-Security-Policy” headers, among others, could be added to your configuration to compliment the security of your certificate and website.
I almost forgot!
Another great site to analyze your configuration is https://www.hardenize.com.
It confirms @JuergenAuer s finding of the redirect issue that should be corrected.
HTTPS server redirects to plaintext HTTP
This HTTPS server redirects to plaintext HTTP, defeating encryption and exposing its users to content sniffing and active network attacks.