Page not available since installing certbot certificate

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is: The requested URL was not found on this server.

I ran this command:
sudo ufw allow 443

sudo add-apt-repository ppa:certbot/certbot

sudo apt install certbot python-certbot-apache

sudo certbot --apache

It produced this output:

Die Website ist nicht erreichbar

karl.datalyxt.de hat die Verbindung abgelehnt.

Versuche Folgendes:

ERR_CONNECTION_REFUSED

My web server is (include version): Apache/2.4.41 ubuntu

The operating system my web server runs on is (include version):Apache/2.4.41 ubuntu

My hosting provider, if applicable, is: selfmade datalyx

I can login to a root shell on my machine (yes or no, or I don't know): yes

I'm using a control panel to manage my site (no, or provide the name and version of the control panel):

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot):

after the error i delete certbot certificate with the command
certbot delete

but the output (error) is still there

What's the output of:

sudo apachectl -t -D DUMP_VHOSTS
sudo ss -tlnp 'sport = :https'
3 Likes

What good did that do?

3 Likes
curl -Ii karl.datalyxt.de/.well-known/acme-challenge/Test_File-1234
HTTP/1.1 301 Moved Permanently
Date: Wed, 22 Mar 2023 11:01:50 GMT
Server: Apache/2.4.41 (Ubuntu)
Location: https://karl.datalyxt.de/.well-known/acme-challenge/Test_File-1234
Content-Type: text/html; charset=iso-8859-1

curl -Ii https://karl.datalyxt.de/.well-known/acme-challenge/Test_File-1234
curl: (7) Failed to connect to karl.datalyxt.de port 443: No route to host

I would handle the ACME challenge requests in HTTP [do not redirect them to HTTPS].

4 Likes

I don't think this is a recommended method of installing Certbot any longer. I believe the PPA is not maintained. Please see https://certbot.eff.org/ for the current recommendations for installing Certbot.

4 Likes

sudo apachectl -t -D DUMP_VHOSTS
AH00526: Syntax error on line 33 of /etc/apache2/sites-enabled/000-default-le-ssl.conf:
SSLCertificateFile: file '/etc/letsencrypt/live/karl.datalyxt.de/fullchain.pem' does not exist or is empty
Action '-t -D DUMP_VHOSTS' failed.
The Apache error log may have more information.

sudo ss -tlnp 'sport = :https'
State Recv-Q Send-Q Local Address:Port Peer Address:Port Process
LISTEN 0 511 *:443 : users:(("apache2",pid=612894,fd=6),("apache2",pid=612378,fd=6),("apache2",pid=612377,fd=6),("apache2",pid=612376,fd=6),("apache2",pid=612375,fd=6),("apache2",pid=612286,fd=6),("apache2",pid=612279,fd=6),("apache2",pid=612277,fd=6),("apache2",pid=612267,fd=6),("apache2",pid=245268,fd=6),("apache2",pid=989,fd=6))

before i installed the certbot certificate the page was available. so i hoped with deleting the certificate my page is available again. i took help from this blog (it is german).
but i doesn´t change anything.

You also have to remove the Apache config changes.

In short, disable the HTTPS (port 443) VirtualHost file and remove the redirect to HTTPS in the HTTP (port 80) VirtualHost

Another approach is here:
https://eff-certbot.readthedocs.io/en/stable/using.html#safely-deleting-certificates

5 Likes

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.