My domain is: yuk1.jp
I ran this command:
$ curl -v https://yuk1.jp
It produced this output:
- Rebuilt URL to: https://yuk1.jp/
- Trying 52.194.2.128…
- TCP_NODELAY set
- Connected to yuk1.jp (52.194.2.128) port 443 (#0)
- schannel: SSL/TLS connection with yuk1.jp port 443 (step 1/3)
- schannel: checking server certificate revocation
- schannel: sending initial handshake data: sending 172 bytes…
- schannel: sent initial handshake data: sent 172 bytes
- schannel: SSL/TLS connection with yuk1.jp port 443 (step 2/3)
- schannel: failed to receive handshake, need more data
- schannel: SSL/TLS connection with yuk1.jp port 443 (step 2/3)
- schannel: encrypted data got 2960
- schannel: encrypted data buffer: offset 2960 length 4096
- schannel: sending next handshake data: sending 126 bytes…
- schannel: SSL/TLS connection with yuk1.jp port 443 (step 2/3)
- schannel: encrypted data got 258
- schannel: encrypted data buffer: offset 258 length 4096
- schannel: next InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.
- Closing connection 0
- schannel: shutting down SSL/TLS connection with yuk1.jp port 443
- schannel: clear security context handle
curl: (35) schannel: next InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.
My web server is (include version):
$ sudo httpd -v
Server version: Apache/2.4.39 (Amazon)
Server built: Apr 5 2019 18:55:17
The operating system my web server runs on is (include version):
$ cat /etc/system-release
Amazon Linux AMI release 2018.03
I can login to a root shell on my machine (yes or no, or I don’t know): yes
The version of my client is (e.g. output of certbot --version
or certbot-auto --version
if you’re using Certbot): sudo certbot-auto --version
certbot 0.37.0
I tested SSL at the following site.
https://www.ssllabs.com/ssltest/analyze.html?d=yuk1.jp
SSL will be fine.
But HTTP status code is Request failed.
There seems to be a problem with the handshake.
no problem with HTTP.
Note: Connection was possible until last week.
If checked today, connection is not possible.
thanks