TLS Certificate is not trusted

Help
1

My website had SSL running successfully before 2 weeks. But due to some malware attack, I couldn't load my site using HTTPS. But after clearing the issues, still website is not supporting SSL. I have reinstalled the certificate but no use. When I am checking site with Sucuri site check, It show error like " TLS Certificate is not trusted"

My domain is: pharm-sol[.]com

I ran this command:

sudo snap install core
sudo snap refresh core
sudo snap install --classic certbot
sudo certbot --apache -d pharm-sol[.]com

It produced this output: installed successfully

My web server is (include version): Apache

The operating system my web server runs on is (include version): ubuntu

My hosting provider, if applicable, is:

I can login to a root shell on my machine (yes or no, or I don't know): Yes

I'm using a control panel to manage my site (no, or provide the name and version of the control panel):

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot):
certbot 2.8.0

2

HI @geethzz, and welcome to the LE community forum :slight_smile:

First things first:

To anyone wanting to help here:

Please note:

And:
VirusTotal - URL - bbc0ab73ff82290112ee96201c2f991138351fc349c954df1de281864c227cfb
image

Be very careful when accessing this site.

2 Likes
3

That out of the way...

The site is currently using a self-signed cert.
See: SSL Server Test: pharm-sol.com (Powered by Qualys SSL Labs)

What shows?:
sudo apachectl -t -D DUMP_VHOSTS

3 Likes
4 
VirtualHost configuration:
*:443 is a NameVirtualHost
         default server pharm-sol[.]com (/etc/apache2/sites-enabled/default-ssl.conf:2)
         port 443 namevhost pharm-sol[.]com (/etc/apache2/sites-enabled/default-ssl.conf:2)
         port 443 namevhost pharm-sol[.]com (/etc/apache2/sites-enabled/pharmsol-le-ssl.conf:2)
                 alias www.pharm-sol[.]com
*:80  is a NameVirtualHost
         default server pharm-sol[.]com (/etc/apache2/sites-enabled/000-default.conf:1)
         port 80 namevhost pharm-sol[.]com (/etc/apache2/sites-enabled/000-default.conf:1)
                 alias www.pharm-sol[.]com
         port 80 namevhost beta.pharm-sol[.]com (/etc/apache2/sites-enabled/beta-pharmsol.conf:1)
                 alias www.beta.pharm-sol[.]com
         port 80 namevhost pharm-sol[.]com (/etc/apache2/sites-enabled/pharmsol.conf:1)
                 alias www.pharm-sol[.]com
         port 80 namevhost web.pharm-sol[.]com (/etc/apache2/sites-enabled/web-pharmsol.conf:1)
                 alias www.web.pharm-sol[.]com
5

Note: There are links in your page that are flagged malicious!

See:
VirusTotal - URL - 7834d74515b137d55014613226441d7aa02f7c23a262c6ef8ff86c5e937ba6d1

3 Likes
6

What shows?:
certbot certificates

3 Likes
7 
Found the following certs:
  Certificate Name: pharm-sol[.]com
    Serial Number: 4b2082366bcff95ddbf21d417209f3d0fcc
    Key Type: ECDSA
    Domains: pharm-sol[.]com
    Expiry Date: 2024-04-14 05:26:53+00:00 (VALID: 89 days)
    Certificate Path: /etc/letsencrypt/live/pharm-sol[.]com/fullchain.pem
    Private Key Path: /etc/letsencrypt/live/pharm-sol[.]com/privkey.pem
8

There are multiple name:port overlaps.

Two files are using pharm-sol[.]com:443:

  • /etc/apache2/sites-enabled/default-ssl.conf
  • /etc/apache2/sites-enabled/pharmsol-le-ssl.conf

Two files are using pharm-sol[.]com:80:

  • /etc/apache2/sites-enabled/000-default.conf
  • /etc/apache2/sites-enabled/pharmsol.conf

Each FQDN:PORT combination should only appear once within your configuration.

3 Likes
9

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.