This site can’t provide a secure connection, www.studiohosek.cz sent an invalid response. ERR_SSL_PROTOCOL_ERROR

genderbee · August 22, 2019, 10:34am

My domain is: studiohosek.cz

I ran this command:
sudo certbot --apache -d www.studiohosek.cz

It produced this output (in web browser chromium):
This site can’t provide a secure connection
www.studiohosek.cz sent an invalid response.
ERR_SSL_PROTOCOL_ERROR.

I rebooted server, restarted apache, changed rights, etc., but still the same situation. I have letsencrypt folder in my /var/www folder, so /etc/letsencrypt is as link to this folder. Could be the problem?

Log (last message before 2 hours, but now nothing is storing to log):
Description: Apache Web Server plugin
Interfaces: IAuthenticator, IInstaller, IPlugin
Entry point: apache = certbot_apache.entrypoint:ENTRYPOINT
Initialized: <certbot_apache.override_debian.DebianConfigurator object at 0x7f105c1fd6a0>
2019-08-22 10:07:19,482:DEBUG:certbot.plugins.storage:Plugin storage file /etc/letsencrypt/.pluginstorage.json was empty, no values loaded
2019-08-22 10:07:19,489:INFO:certbot.renewal:Cert not yet due for renewal
2019-08-22 10:07:19,490:DEBUG:certbot.plugins.selection:Requested authenticator apache and installer apache
2019-08-22 10:07:19,490:DEBUG:certbot.plugins.selection:Selecting plugin: * apache

My web server is:
Server version: Apache/2.4.29 (Ubuntu)
Server built: 2019-04-03T13:22:37

The operating system my web server runs on is:
Linux hosek 4.15.0-48-generic #51-Ubuntu SMP Wed Apr 3 08:28:49 UTC 2019 x86_64 x86_64 x86_64 GNU/Linux

I can login to a root shell on my machine:
Yes.

I’m using a control panel to manage my site:
No.

The version of my client is:
certbot 0.31.0

Thanks for help.

JuergenAuer · August 22, 2019, 1:12pm

Hi @genderbee

looks like you have found a solution.

Your connections ( https://check-your-website.server-daten.de/?q=studiohosek.cz ):

Domainname	Http-Status	redirect	Sec.	G
• http://studiohosek.cz/
85.255.9.219	301	http://www.studiohosek.cz/	0.117	D

• http://www.studiohosek.cz/
85.255.9.219	301	https://www.studiohosek.cz/	0.120	A

• https://studiohosek.cz/
85.255.9.219	301	http://www.studiohosek.cz/	3.730	N
Certificate error: RemoteCertificateNameMismatch

• https://www.studiohosek.cz/
85.255.9.219	200		3.513	I

Your certificate:

CN=www.studiohosek.cz
	12.08.2019
	10.11.2019
expires in 80 days	www.studiohosek.cz - 1 entry

So your www version is secure.

Only thing: You should create one certificate with both domain names (non-www and www) and use that. So your non-www version is secure.

Perhaps clean your Chrome cache.

system · September 21, 2019, 1:17pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Python requests library can't make HTTPS connections (was: Apache certbot error) Help	15	18094	May 7, 2017
Trouble getting started after following certbot instructions Help	15	1039	June 30, 2018
Certbot --apache has error on debian Server	4	2731	August 27, 2016
Certbot certificate has been set up but site cannot be accessed via https Help	42	1172	July 10, 2023
Getting error on Ubuntu Apache with Certbot setup Server	18	3205	June 3, 2018

This site can’t provide a secure connection, www.studiohosek.cz sent an invalid response. ERR_SSL_PROTOCOL_ERROR

Related topics