The request message was malformed :: Server only speaks HTTP, not TLS

eeronen · August 9, 2017, 6:26pm

Please fill out the fields below so we can help you better.

I ran this command: sudo certbot --apache

It produced this output:

Saving debug log to /var/log/letsencrypt/letsencrypt.log

Which names would you like to activate HTTPS for?
-------------------------------------------------------------------------------
1: reseptit.veerola.fi
2: <some other domain>.fi
3: <some other domain>.fi
-------------------------------------------------------------------------------
Select the appropriate numbers separated by commas and/or spaces, or leave input
blank to select all options shown (Enter 'c' to cancel):1
Starting new HTTPS connection (1): acme-v01.api.letsencrypt.org
Obtaining a new certificate
Performing the following challenges:
tls-sni-01 challenge for reseptit.veerola.fi
/usr/lib/python2.7/dist-packages/OpenSSL/rand.py:58: UserWarning: implicit cast from 'char *' to a different pointer type: will be forbidden in the future (check that the types are as you expect; use an explicit ffi.cast() if they are correct)
  result_code = _lib.RAND_bytes(result_buffer, num_bytes)
Waiting for verification...
Cleaning up challenges
Failed authorization procedure. reseptit.veerola.fi (tls-sni-01): urn:acme:error:malformed :: The request message was malformed :: Server only speaks HTTP, not TLS

IMPORTANT NOTES:
 - The following errors were reported by the server:

   Domain: reseptit.veerola.fi
   Type:   malformed
   Detail: Server only speaks HTTP, not TLS

   To fix these errors, please make sure that you did not provide any
   invalid information to the client, and try running Certbot again.

My web server is (include version): Apache 2

The operating system my web server runs on is (include version): Debian jessie on raspberry pi 3

My hosting provider, if applicable, is:

I can login to a root shell on my machine (yes or no, or I don’t know): absolutely

I’m using a control panel to manage my site (no, or provide the name and version of the control panel): nope

My sites-enabled/reseptit.veerola.fi.conf looks like this

  <VirtualHost 80:80>
           ServerAdmin imma.gonna@hide.this
           DocumentRoot /var/www/reseptit.veerola.fi
           ServerName reseptit.veerola.fi
           ErrorLog ${APACHE_LOG_DIR}/error.log
           CustomLog ${APACHE_LOG_DIR}/access.log combined
   </VirtualHost>

I’ve been googling a solution all day without finding a solution. Thanks for your help!

rg305 · August 9, 2017, 9:08pm

That looks like a typo.
Should maybe be:
<VirtualHost *:80>
or
<VirtualHost {server.ip}:80>

That said,

tls requires port 443

eeronen · August 10, 2017, 9:31am

Amazing. That solved my problem.

Thanks a lot! (^^)

system · September 9, 2017, 9:32am

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Server only speaks HTTP, not TLS - Ubuntu16.04/apache2 - install certbot Help	5	4816	May 17, 2017
Type:malformed. Server only speaks HTTP, not TLS Help	3	3686	October 14, 2017
At my wits end, this simply doesnt work. SITE IS DOWN Server	6	1898	January 2, 2019
Getting error when trying to create certs Help	8	2092	October 11, 2017
Urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Incorrect validation certificate for TLS-SNI-01 challenge Help	10	6807	February 19, 2017

The request message was malformed :: Server only speaks HTTP, not TLS

Related topics