Wildcard SSL on Debian 7, Apache2 not working. (Rackspace Cloud Server)

codephobia asked:

I have been having some issues setting up my godaddy wildcard SSL cert on a new Debian 7 server running Apache 2. Thinking maybe I have missed something and hoping you can help me out. Here is what I have done so far:

  • Turned on SSL mod for Apache: sudo a2enmod ssl sudo service apache2
    restart
  • Made sure “Listen 443” was in /etc/apache2/ports.conf
  • Generated my key using openssl: openssl req -new -newkey rsa:2048
    -nodes -keyout yourdomain.key -out yourdomain.csr
  • Setup godaddy SSL Cert and downloaded ssl files (gd_bundle.crt &
    mydomain.crt).
  • Uploaded godaddy files to my server via ftp and copied them to
    somewhere more safe.
  • Updated /etc/apache2/sites-available/default-ssl with the following:

    SSLCertificateFile /etc/apache2/ssl/mydomain.csr

    SSLCertificateKeyFile /etc/apache2/ssl/mydomain.key

    SSLCertificateChainFile /etc/apache2/ssl/mydomain.crt

    SSLCACertificateFile /etc/apache2/ssl/gd_bundle.crt

  • And made sure it has: SSLEngine on
  • And then restarted Apache: sudo service apache2 restart

When I access the domain via https:// I get this error in chrome:
Error 107 (net::ERR_SSL_PROTOCOL_ERROR): SSL protocol error.

And nothing shows up in my apache error logs.

Any help is GREATLY appreciated.

My answer:


I looked at a connection to your site in Wireshark, and the server immediately disconnected after my client began the SSL negotiation. This leads me to believe you don’t actually have an SSL virtual host enabled.

Try enabling it:

a2ensite default-ssl

Be sure to reload Apache’s configuration once you’ve done so:

service apache2 reload

View the full question and answer on Server Fault.

Creative Commons License
This work is licensed under a Creative Commons Attribution-ShareAlike 3.0 Unported License.