I'm having some issue to share my website link on facebook, we are receiving the Erro Curl: 60 (SSL_CACERT).
This error appeared at the beginning of this month, so with SSL Labs, we realised that there is some problem with the intermediate certificate.
I was looking for some solution in your forum and some people suggested to change cert.pem for the fullchain.pem in SSLCertificateFile, but I'm using the Virtualmin Console to generate and renew the SSL certificate automatically with Let's Encrypt and when I renew the SSL all the certificates are update in home folder:
Lucas may not have enough access to make such changes
Step #1: Contact the system admin and make them aware of the problem.
[It should be causing problems for all LE users on that system (once their certs renew)]
Webmin (and thus Virtualmin) used to hardcode the intermedate if certbot wasn't installed on the server and the acme-tiny client was used. This was bad design on their part. See:
Because you don't have root access to your server, this is something your hosting provider needs to fix.
Thanks a lot for the help, I'm using the Webmin Control Panel and I updated some packages but I still have the problem with incomplete intermediate certificate, now I'm using the version 1.962 of Webmin and 6.14 of Virtualmin.
I think Osiris and Rudy are right I will try to contact Virtualmin, to see if they can fix it, I will let you know if I found any solution.
Note that manually changing the intermediate this time does not give you any guarantee your site keeps working in the future, as changes in the intermediate could happen at any time without any warning (in case of an incident with the current intermediate for example).
Hopefully the webmin fix will be in a future release and hopefully a simple upgrade of your webmin/virtualmin will suffice.
