I'm not sure how to configure my settings in apache

Hello,

I’ve been trying to get ssl working on my website, and I keep failing. I think that I’m doing something wrong in my apache settings.

I’m running a single website on a server running on arch linux, with apache as the server, and the website is a django website.

My domain name is ult-saf-guides.com
I ran $ certbot --apache

Select the appropriate number [1-2] then [enter] (press ‘c’ to cancel): 2
Failed redirect for ult-saf-guides.com
Unable to set enhancement redirect for ult-saf-guides.com
Unsupported directory layout. You may try to enable mod rewrite and try again.

IMPORTANT NOTES:

  • We were unable to set up enhancement redirect for your server,
    however, we successfully installed your certificate.
  • Congratulations! Your certificate and chain have been saved at:
    /etc/letsencrypt/live/ult-saf-guides.com/fullchain.pem
    Your key file has been saved at:
    /etc/letsencrypt/live/ult-saf-guides.com/privkey.pem
    Your cert will expire on 2017-10-07. To obtain a new or tweaked
    version of this certificate in the future, simply run certbot again
    with the “certonly” option. To non-interactively renew all of
    your certificates, run “certbot renew”

This is what I currently have in my httpd.conf file:

<IfModule proxy_html_module>
Include conf/extra/proxy-html.conf
</IfModule>

# Secure (SSL/TLS) connections
#Include conf/extra/httpd-ssl.conf
#
# Note: The following must must be present to support
#       starting without SSL on platforms with no /dev/random equivalent
#       but a statically compiled-in mod_ssl.
#
<IfModule ssl_module>
SSLRandomSeed startup builtin
SSLRandomSeed connect builtin
</IfModule>
<VirtualHost *:80>
    ServerName ult-saf-guides.com
        Alias /robots.txt /home/vernon/html/static/robots.txt
        Alias /.well-known/ /home/vernon/html/.well-known/

        <Directory /home/vernon/html/static>
        Require all granted
        </Directory>

        <Directory /home/vernon/html/.well-known>
        Require all granted
        </Directory>

</VirtualHost>

Some observations/notes/suggestions:
You selected “2” but don’t show what the menu held.
Presuming “2” was the auto redirection - if so, try it with “1” instead and handle the redirection later.

This implies that requests on //ult-saf-guides.com/.well-known/acme-challenge/ will look for content at /home/Vernon/html/.well-known/acme-challenge/ (does that folder exist?)
If not create it or update the alias to better work as you expected.
If it does exist, place a test.txt file there and see if you can access it from the Internet.

If you are not using a proxy you might want to just rem those lines out.

Can you run grep -r 443 /etc/apache2 to see if there is any configuration file that currently tells Apache to listen on port 443? (I’m assuming Arch puts Apache configuration files there, the way other distributions do.)

Thanks,

I’m wondering if the problem isn’t the directory system used by arch?

[myuser@ult-saf-guides ~]$ grep -r 443 /etc/httpd/conf/httpd.conf 
Listen 443

Can you show /etc/httpd/conf/httpd.conf ?

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.