Tls_parse_ctos_key_share:bad key share

AngelAlex · May 18, 2022, 6:13pm

Domain mozgovoi.xyz
Version certbot 0.40.0
Ubuntu 20.04 LTD

I deployed ubuntu on server installed an application on it
and decided to install an SSL certificate from certbot.
Everything worked fine, but after the reboot I get a 404 error in the logs and nginex
throws tls_parse_ctos_key_share:bad key share in access.log a lot of left
requests. It seems that letsencrypt, seeing the left requests, blocks mine
certificates. Can you recommend anything. While the application solution on the site
will use a maximum of 3 IP pieces?

MikeMcQ · May 18, 2022, 6:24pm

Let's Encrypt does not monitor inbound requests to your server. It cannot "see the left requests" (not sure what those even are).

Your server looks correct by several test sites. See the SSL Labs report which shows an A grade

That is a very odd error message. I found this Stack Overflow thread that describes various reasons for the problem.

rg305 · May 18, 2022, 10:58pm

I suspect a MiTM (or a GiTM).

system · June 17, 2022, 10:58pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.