Question

Address Bar Shows Padlock with Red Line . . Used LetsEncrypt

Posted May 26, 2020 110 views
SecurityDNS

I (think I) installed SSL using LetsEncrypt 72 hours ago, & still have a padlock with a red line through it, which appears in firefox, chrome, safari, & brave browsers.

EricNyc.Rocks, a wordpress website, seems to function properly. But there’s no www – not sure if that matters. & there’s no http or https.

I linked to digitalocean nameservers at namecheap.com. At digitalocean, I linked the different ways to type my domain to the droplet’s IP address. & I linked the nameservers to the IP address.

The SSL checker at SSLshopper says . .

www.ericnyc.rocks resolves to 159.89.224.251

Server Type: Apache/2.4.29 (Ubuntu)

No SSL certificates were found on www.ericnyc.rocks. Make sure that the name resolves to the correct server and that the SSL port (default is 443) is open on your server’s firewall.

It’s that last paragraph I don’t understand. Any help much appreciated.
Thanks, Eric

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

×
1 answer

Hi @ericlindellnyc,

It seems like nothing is listening on your port 443. Port 443 is the one that handles https requests. I can see you are using Apache as well, so you’ll need to create a host configuration for your domain http://ericnyc.rocks/ which listens to port 443 and loads the certificates.

If you are unsure how you can achieve that, don’t worry DigitalOcean has a really good guide on this one:

https://www.digitalocean.com/community/tutorials/how-to-secure-apache-with-let-s-encrypt-on-ubuntu-18-04

In this tutorial, you will use Certbot to obtain a free SSL certificate for Apache on Ubuntu 18.04 and set up your certificate to renew automatically.

This tutorial will use a separate Apache virtual host file instead of the default configuration file

Regards,
KDSys

by Kathleen Juell
by Erika Heidi
Let's Encrypt is a Certificate Authority (CA) that provides an easy way to obtain and install free TLS/SSL certificates, thereby enabling encrypted HTTPS on web servers. In this tutorial, you will use Certbot to obtain a free SSL certificate for Apache on Ubuntu 18.04 and set up your certificate to renew automatically.
  • KDSys, Thanks for feedback.
    I followed instructions . .
    How To Secure Apache with Let’s Encrypt on Ubuntu 18.04

    Instructions linked to . .
    “Initial server setup with ubuntu 18.04.”

    I got to “Step5. Enabling External Access for Your Regular User”

    Those instructions linked to . .
    How to Set Up SSH Keys on Ubuntu 18.04.
    I followed instructions, & set . .

    PasswordAuthentication no (SAVED/CLOSED FILE)

    To implement changes, we must restart sshd service:
    sudo systemctl restart ssh

    Test SSH service functioning correctly before closing session:
    ssh username@remote_host

    ** THEN I GET THIS ERROR **
    Permission Denied (PublicKey)

    Confused. Suggestions appreciated.
    Eric

    • Hi @ericlindellnyc,

      In this case I believe you can skip the Initial Server setup and most importantly the part where you add a new user and add to it an SSH key. You can continue directly with the tutorial itself about Let’s Encrypt and how to configure it on your server.

Submit an Answer