heiko
March 19, 2018, 12:40pm
1
I always get SEC_ERROR_BAD_SIGNATURE in Browser (Firefox 59.0.1, Safari, Iridium, iCab), when I request or renew a Certificate.
My example domain is:www.intermezzo.net
I ran this command:www.intermezzo.net
Authorizing www.intermezzo.net.
- Retrieving HTTP authentication challenge.
- Retrieving authorization key.
Authorizing intermezzo.net.
- Retrieving HTTP authentication challenge.
- Retrieving authorization key.
Generating RSA key.
Generating CSR.
Retrieving certificate.
Using /usr/local/etc/hiawatha/tls/www.intermezzo.net.pem as output file.
Writing private key and certificate to file.
Retrieving CA certificate.
Writing CA certificate to file.
My web server is (include version):
The operating system my web server runs on is (include version):
My hosting provider, if applicable, is:Hetzner.de
I can login to a root shell on my machine (yes or no, or I don’t know):
Hi,
it seems that your server send two certs in one request.
Can you check your config and make sure to remove the cert? (although i don’t know what happened since i can’t connect to your server)
Thank you
heiko
March 19, 2018, 1:13pm
3
I restarted the server. Sorry.
There is only one cert in the config. The issue is only with new certs. Old certs on other domains are still working.
The server banned you because of curl, I disabled this now
Checking with openssl tools, I get errors, too:
$ openssl s_client -connect www.intermezzo.net:443 -servername www.intermezzo.net
I would check if the components of the certificate file are valid.
This is due to a bug in Hiawatha’s Let’s Encrypt script. This topic can be closed.
1 Like
system
April 18, 2018, 6:23pm
6
This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.
