Let's Encrypt work fine now

trondnyl · June 1, 2019, 9:22pm

I now have several domain with and without SSL Certificat.
My problem is now that I have a domain happypost.no on my apacheserver and this domain was given ssl certificat before Wordpress iniliazed on server and then I deleted all on the server and reinstalled wordpress, but it still think it is ssl so it renamed to https.happypost.no and can’t open site.
My other domains work ok now after i removed 1 of 2 router that prevent open port 443. Now
https://nylokken.no ok
and https://eidskog.ddns.net ok
When right port and everthing it is very easy and quick to install the certificats.
The problem is to remove it and make it stop rewriting to https. I folowed the tips on internet how to disable redirect but it still do on happypost.no, and I need to make site http before wordpress initalize
and start installing.

My domain is:happypost.no

I ran this command:

It produced this output : https://happypost.no and can’t open

My web server is (include version): newest apache and ubuntu 18.04LTS server newest php 7.2

The operating system my web server runs on is (include version):

My hosting provider, if applicable, is:

I can login to a root shell on my machine (yes or no, or I don’t know):

I’m using a control panel to manage my site (no, or provide the name and version of the control panel):

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot):

orangepizza · June 1, 2019, 9:31pm

301 redirect are saved in browser indefinitely unless you empty the cache, did you try that?

JuergenAuer · June 1, 2019, 10:21pm

Hi @trondnyl

there is one certificate ( https://check-your-website.server-daten.de/?q=happypost.no#ct-logs ):

CertSpotter-Id	Issuer	not before	not after	Domain names	LE-Duplicate	next LE
936260700	CN=Let’s Encrypt Authority X3, O=Let’s Encrypt, C=US	2019-05-28 19:01:41	2019-08-26 19:01:41	happypost.no - 1 entries	duplicate nr. 1

But this isn’t used, instead there is another certificate used:

CN=eidskog.ddns.net
	27.04.2019
	26.07.2019
expires in 54 days	eidskog.ddns.net - 1 entry

Your configuration has some problems.

Domainname	Http-Status	redirect	Sec.	G
• http://happypost.no/
87.248.15.221	500		0.143	S
Internal Server Error

• http://www.happypost.no/
87.248.15.221	500		0.140	S
Internal Server Error

• https://happypost.no/
87.248.15.221	301	https://eidskog.ddns.net/	1.217	N
Certificate error: RemoteCertificateNameMismatch

• https://www.happypost.no/
87.248.15.221	301	https://eidskog.ddns.net/	0.896	N
Certificate error: RemoteCertificateNameMismatch

• https://eidskog.ddns.net/	200		0.907	I

• http://happypost.no/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
87.248.15.221	404		0.160	A
Not Found
Visible Content: Not Found The requested URL /.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de was not found on this server. Apache/2.4.29 (Ubuntu) Server at happypost.no Port 80

• http://www.happypost.no/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
87.248.15.221	404		0.156	A
Not Found
Visible Content: Not Found The requested URL /.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de was not found on this server. Apache/2.4.29 (Ubuntu) Server at www.happypost.no Port 80

http + / has a http status 500, but checking a validation file under /.well-known/acme-challenge has the correct answer http status 404 - Not Found. That’s curious.

https has the wrong certificate and redirects to the other domain.

Looks like https uses the wrong vHost (the vHost of eidskog.ddns.net).

What says

apachectl configtest
apachectl fullstatus
apachectl -S

system · July 1, 2019, 10:21pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.