https://bz.apache.org/bugzilla/show_bug.cgi?id=69231
Bernard Spil <[email protected]> changed: What |Removed |Added ---------------------------------------------------------------------------- Resolution|--- |INVALID Status|NEEDINFO |RESOLVED --- Comment #3 from Bernard Spil <[email protected]> --- Sorry to have wasted your time. After restart I found: > [tls:error ] (421)Unknown error: 421: [remote 188.227.201.216:14262] AH10345: > Connection host example.org, selected via SNI, and request host > nextcloud.example.org have incompatible TLS configurations. which is slightly misleading. Checking my config again, I missed the vhost in converting to mod_md, it still had `TLSCertificate` configured and I have TLSStrictSNI on Not seeing errors now in the vhost's errorlog. Checking the main errorlog, there's no startup warning about the overlap. Not sure if there's an easy way to generate, but would be helpful to have warnings if there's overlapping mod_md and regular mod_tls/mod_ssl key/cert configured. Additionally, startup of Apache is slightly more verbose with mod_ssl at startup. > Apache/2.4.62 (FreeBSD) LibreSSL/3.9.2 configured -- resuming normal > operations vs > Apache/2.4.62 (FreeBSD) configured -- resuming normal operations it may be helpful to show that mod_tls is used, or the rustls version like for OpenSSL libs. I.e. > Apache/2.4.62 (FreeBSD) rustls/0.13.0 -- resuming normal operations ? -- You are receiving this mail because: You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
