Search
Search

Apache SSL error: Re-negotiation handshake failed: Not accepted by client?

Leos Literak Published at Dev
19
Leos Literak

I protect my wordpress administration by a client certificate. I had a trouble in march after upgrading from Wheezy to Jessie but it has been solved and everything ran well until my letsencrypt certificate expired.

I ran a letsencrypt client and it modified apache configuration files as well. The client certificate protected path stopped working on SSL error. Unfortunately I do not have a backup of previous configuration.

I spent few hours but without success. This answer probably explains the fault but I am unable to apply it in my scenerio.

ssl_engine_kernel.c(1908): [client 213.220.230.83:50427] AH02043: SSL virtual host for servername found
ssl_engine_kernel.c(1841): [client 213.220.230.83:50427] AH02041: Protocol: TLSv1.2, Cipher: ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)
ssl_engine_kernel.c(1841): [client 213.220.230.83:50428] AH02041: Protocol: TLSv1.2, Cipher: ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)
ssl_engine_kernel.c(243): [client 213.220.230.83:50427] AH02034: Initial (No.1) HTTPS request received for child 2 (server www.literak.cz:443)
ssl_engine_kernel.c(591): [client 213.220.230.83:50427] AH02255: Changed client verification type will force renegotiation
[client 213.220.230.83:50427] AH02221: Requesting connection re-negotiation
ssl_engine_kernel.c(791): [client 213.220.230.83:50427] AH02260: Performing full renegotiation: complete handshake protocol (client does support secure renegotiation)
[client 213.220.230.83:50427] AH02226: Awaiting re-negotiation handshake
ssl_engine_kernel.c(1908): [client 213.220.230.83:50427] AH02043: SSL virtual host for servername found
[client 213.220.230.83:50427] AH02261: Re-negotiation handshake failed: Not accepted by client!?

The configuration:

<IfModule mod_ssl.c>
NameVirtualHost 77.93.226.222:80
<VirtualHost 77.93.226.222:443>

  DocumentRoot /var/www-data/wordpress
  <Directory /var/www-data/wordpress>
          Options Indexes FollowSymLinks MultiViews
          AllowOverride All
          Order allow,deny
          allow from all
  </Directory>

  SSLCACertificateFile    /etc/apache2/ssl/leos.pem
    <Location /wp-admin>
      SSLVerifyClient require
      SSLVerifyDepth  1
    </Location>

  CustomLog ${APACHE_LOG_DIR}/access.log combined
  SSLCertificateFile /etc/letsencrypt/live//fullchain.pem
  SSLCertificateKeyFile /etc/letsencrypt/live/privkey.pem
  Include /etc/letsencrypt/options-ssl-apache.conf
</VirtualHost>
</IfModule>
Leos Literak

Ok, that is weird. I found this topic, where somebody had a problem when a certificate was not imported. I checked it and it was my case as well. The certificate disappeared from my chrome.

Collected from the Internet

Please contact [email protected] to delete if infringement.

edited at
0

Comments

0 comments
Login to comment

Related

Error -- KIO Client Could not connect to host ... SSL negotiation failed

500 SSL negotiation failed

Fix SSL negotiation failed

ERROR:ssl_client_socket_openssl.cc(1158)] handshake failed with ChromeDriver Chrome browser and Selenium

Error installing Crashlytics - SSL peer handshake failed

Nginx with Cloudflare: Error 525 SSL Handshake failed

Apache Error during SSL Handshake with remote server

SSL Handshake error after Client Finished handshake message

Handshake failed with fatal error SSL_ERROR_SSL

Attach the SSL client cert okhttp3 . Handshake failed

Selenium ssl_client_socket_impl.cc handshake failed

curl error 35 : failed to receive handshake, SSL/TLS connection failed

RMI with SSL: Failed handshake

SAP SSL handshake failed

SSL HandShake on Java Client

davfs - SSL handshake failed: SSL error: sslv3 alert handshake failure

Mailx SSL/TLS handshake failed: Unknown error -5938

Android Webview getting ERROR_FAILED_SSL_HANDSHAKE with Paypal

LWP::UserAgent and 500 SSL negotiation failed

SSL ("bad handshake: Error([('SSL routines', 'ssl3_get_server_certificate', 'certificate verify failed')],)",)

Apache Beam pipeline running on Dataflow failed to read from KafkaIO: SSL handshake failed

SSL Error: Bad handshake

SSL handshake error

Apache Http Client SSL certificate error

Best solution for the handshake failed SSL error in android web view without ignoring SSL errors

Nginx reverse proxy error:14077438:SSL SSL_do_handshake() failed

Failed to dial: handshake failed: ssh: no common algorithms Error in ssh client for golang

Handshake error to mysql via ssl

SSL handshake error in a JavaRMI application

TOP Ranking

  1. 1

    Can't pre-populate phone number and message body in SMS link on iPhones when SMS app is not running in the background

  2. 2

    pump.io port in URL

  3. 3

    Failed to listen on localhost:8000 (reason: Cannot assign requested address)

  4. 4

    grouping by column variables and appending a new variable based on condition

  5. 5

    Python Read Directory And Output to CSV

  6. 6

    BigQuery - concatenate ignoring NULL

  7. 7

    Angular 8. Unknown amount of http.get requests in array to call, must be sequential, what to use

  8. 8

    Remove adjacent duplicates in linked list in C

  9. 9

    Can a 32-bit antivirus program protect you from 64-bit threats

  10. 10

    How to keep curl session alive between two php processes?

  11. 11

    Limit number of characters in uitextview

  12. 12

    Unable to use switch toggle for dark mode in material-ui

  13. 13

    In C#, is there a way to create a List directly from an Array without copying?

  14. 14

    Laravel getting value from another table using eloquent

  15. 15

    Spring Boot JPA PostgreSQL Web App - Internal Authentication Error

  16. 16

    MTKView Displaying Wide Gamut P3 Colorspace

  17. 17

    Vector input in shiny R and then use it

  18. 18

    Modify c# Windows Forms control library

  19. 19

    SQL Server : are transaction locking table for other users?

  20. 20

    When I click any button in my view page the form is submitted

  21. 21

    Can you sort columns (horizontally) in Google Sheets?

HotTag

Archive