Hello guys!
Today I had to renew the certificates of a numerous domains on my server (one IP, multiple domains). All domains with renewed certificates are no longer accessible via HTTPS with Chrome, Firefox, Wget. Work fine with Safari (web and mobile), Curl, however.
The error messages from the different browsers are:
Chrome: ERR_SSL_PROTOCOL_ERROR
Firefox: SSL_ERROR_RX_UNEXPECTED_NEW_SESSION_TICKET
Wget: OpenSSL: error:1408E0F4:SSL routines:ssl3_get_message:unexpected message
I do understand the issue is with establishing a TLS connection, but I cannot figure out what it is.
openssl s_client -connect adm.clearware.eu:443
establishes a connection and reports correct values.
I proved, that HTTPS is served on port 443.
===
My domain is:
adm.clearware.eu
I ran this command:
certbot-auto renew
It produced this output:
All certificates that had to be renewed were renewed successfully (I lost the exact output, as Iâm trying to resolve the issue for many hours already)
My web server is (include version):
Server version: Apache/2.4.25 (Debian)
Server built: 2017-01-25T22:59:26
The operating system my web server runs on is (include version):
PRETTY_NAME=âDebian GNU/Linux 9 (stretch)â
NAME=âDebian GNU/Linuxâ
VERSION_ID=â9â
VERSION=â9 (stretch)â
My hosting provider, if applicable, is:
Hetzner root server
I can login to a root shell on my machine (yes or no, or I donât know):
Yes. I do have root access
Iâm using a control panel to manage my site (no, or provide the name and version of the control panel):
No control panel
The version of my client is (e.g. output of certbot --version
or certbot-auto --version
if youâre using Certbot):
certbot 0.37.0
Thanks for your help!