Re: Product Bug h5bp/tls/certificate_files.conf

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

my apache2 installation directory is /etc/apache2 not /usr/local
looks like some kind of hard coding error

$ syst$emctl status apache2.service
× apache2.service - The Apache HTTP Server
     Loaded: loaded (/lib/systemd/system/apache2.service; enabled; vendor preset: enabled)
     Active: failed (Result: exit-code) since Fri 2023-02-10 14:29:33 UTC; 12s ago
       Docs: https://httpd.apache.org/docs/2.4/
    Process: 16624 ExecStart=/usr/sbin/apachectl start (code=exited, status=1/FAILURE)
        CPU: 188ms

Feb 10 14:29:33 ubuntu systemd[1]: Starting The Apache HTTP Server...
Feb 10 14:29:33 ubuntu apachectl[16627]: AH00526: Syntax error on line 29 of /etc/apache2/backbutton_configs/h5bp/tls/certificate_files.conf:
Feb 10 14:29:33 ubuntu apachectl[16627]: SSLCertificateFile: file '/usr/local/apache2/certs/default.crt' does not exist or is empty
Feb 10 14:29:33 ubuntu apachectl[16624]: Action 'start' failed.
Feb 10 14:29:33 ubuntu apachectl[16624]: The Apache error log may have more information.
Feb 10 14:29:33 ubuntu systemd[1]: apache2.service: Control process exited, code=exited, status=1/FAILURE
Feb 10 14:29:33 ubuntu systemd[1]: apache2.service: Failed with result 'exit-code'.
Feb 10 14:29:33 ubuntu systemd[1]: Failed to start The Apache HTTP Server.


$ journalctl -xeu apache2.service

Subject: A start job for unit apache2.service has begun execution
░░ Defined-By: systemd
░░ Support: http://www.ubuntu.com/support
░░
░░ A start job for unit apache2.service has begun execution.
░░
░░ The job identifier is 12254.
Feb 10 13:52:48 ubuntu apachectl[15717]: AH00526: Syntax error on line 29 of /etc/apache2/backbutton_configs/h5bp/tls/certificate_files.conf:
Feb 10 13:52:48 ubuntu apachectl[15717]: SSLCertificateFile: file '/usr/local/apache2/certs/default.crt' does not exist or is empty
Feb 10 13:52:48 ubuntu apachectl[15714]: Action 'start' failed.
Feb 10 13:52:48 ubuntu apachectl[15714]: The Apache error log may have more information.
Feb 10 13:52:48 ubuntu systemd[1]: apache2.service: Control process exited, code=exited, status=1/FAILURE
░░ Subject: Unit process exited
░░ Defined-By: systemd
░░ Support: http://www.ubuntu.com/support
░░
░░ An ExecStart= process belonging to unit apache2.service has exited.
░░
░░ The process' exit code is 'exited' and its exit status is 1.


¯\_(ツ)_/¯
♡۶♡ ۶♡۶



On Fri, 10 Feb 2023 at 14:23, Florian Schwalm <flo@xxxxxxxxxxxx> wrote:
What is the output of running journalctl -xeu apache2.service?

If you included the file from the repository unchanged the files mentioned there probably do not exist on your machine and they shouldn't.

The configurations from the h5bp/server-configs-apache repository are not all plug and play, for some you MUST read the comments in the files and adjust the given directives to your own system.

Since you already have letsencrypt TLS rules in your configuration I don't think you should include h5bp/tls/certificate_files.conf at all.


Am 10. Februar 2023 15:05:19 MEZ schrieb Zahid Rahman <zahidr1000@xxxxxxxxx>:
Hi,

Including h5bp/tls/certificate_files.conf  in the virtual host conf file  is causing an error
I believe this is a product bug rather than something I may be doing.

$ sudo /etc/init.d/apache2 restart
Restarting apache2 (via systemctl): apache2.serviceJob for apache2.service failed because the control process exited with error code.
See "systemctl status apache2.service" and "journalctl -xeu apache2.service" for details.


<IfModule mod_ssl.c>
<VirtualHost *:443>
        ServerAdmin zahidr1000@xxxxxxxxx
        ServerName backbutton.org
        ServerAlias www.backbutton.org
        DocumentRoot /***/****/backbutton
        ErrorLog ${APACHE_LOG_DIR}/error.log
        CustomLog ${APACHE_LOG_DIR}/access.log combined


Include  backbutton_configs/h5bp/tls/ssl_engine.conf
# Include  backbutton_configs/h5bp/tls/certificate_files.conf
Include  backbutton_configs/h5bp/tls/policy_balanced.conf

Include backbutton_configs/h5bp/rewrites/rewrite_nowww.conf

Include backbutton_configs/h5bp/basic.conf
Include backbutton_configs/h5bp/web_performance/cache-control.conf
Include backbutton_configs/h5bp/web_performance/cache_expiration.conf
Include backbutton_configs/h5bp/web_performance/compression.conf
Include backbutton_configs/h5bp/web_performance/content_transformation.conf
Include backbutton_configs/h5bp/web_performance/etags.conf
Include backbutton_configs/h5bp/web_performance/file_concatenation.conf
Include backbutton_configs/h5bp/web_performance/filename-based_cache_busting.conf

Include /etc/letsencrypt/options-ssl-apache.conf
SSLCertificateFile /etc/letsencrypt/live/backbutton.org-0001/fullchain.pem
SSLCertificateKeyFile /etc/letsencrypt/live/backbutton.org-0001/privkey.pem
</VirtualHost>
</IfModule>

Regards
Zahid


¯\_(ツ)_/¯
♡۶♡ ۶♡۶

[Index of Archives]     [Open SSH Users]     [Linux ACPI]     [Linux Kernel]     [Linux Laptop]     [Kernel Newbies]     [Security]     [Netfilter]     [Bugtraq]     [Squid]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Samba]     [Video 4 Linux]     [Device Mapper]

  Powered by Linux