Tag Archives: https

Client with the currently selected authenticator does not support any combination of challenges that will satisfy the CA.

So, I was trying to create a SSL certificate with certbot…..

root@sd-5555:~# certbot --apache -d blog.domain.com

This was how I’v done to properly create it.

certbot --authenticator standalone --installer apache -d blog.domain.com --pre-hook "systemctl stop apache2" --post-hook "systemctl start apache2"

Mixed Content: The page at – This request has been blocked; the content must be served over HTTPS

I was having some HTTP issues here on this blog…

Mixed Content: The page at ‘https://www.digitalwhores.net/*******’. This request has been blocked; the content must be served over HTTPS.

I’v installed SSL Insecure Content Fixer.
Make sure you select !!

HTTP_CF_VISITOR (Cloudflare Flexible SSL); deprecated, since Cloudflare sends HTTP_X_FORWARDED_PROTO now

CentOS 7 – allowing port 80 & 443 httpd

Easy!

Run

firewall-cmd --zone=public --add-port=80/tcp --permanent
firewall-cmd --zone=public --add-port=443/tcp --permanent

and then…

firewall-cmd --reload

 

How to check the zones?

firewall-cmd --get-zones

 

If you can’t connect to the server/page…

or with curl…

hell:~ pjrfigueiredo$ curl https://www.domain.com
curl: (7) Failed to connect to www.domain.com port 443: Connection refused

Check if anything is listening to 443

sudo netstat -lnp | grep 443

If nothing show up… try to edit the domain httpd configuration file… and make it so, that httpd is listening to it… like for example

<VirtualHost *:80 *:443>

 

 

 

“This certificate was signed by an untrusted issuer” problem after updating to Mac OS.

This certificate was signed by an untrusted issuer” problem after updating to Mac OS.

Your computer has expired certificates.
To solve this make the following actions:

  1. Applications > Utilities > Keychain Access.
  2. Select
    a) Keychain: Login and
    b) Category: Certificates
  3. Scroll each certificate and if it has expired delete it.

Related links

+John Mueller Hi John, does the rating of the SSL certificate impact the ranking boost? For example does a A rating HTTPS SSL certificate give a bigger ranking boost than a B rating SSL certificate? Or as long as the SSL certificate is valid and comes from a good authority (green locker) there is no ranking boost difference on class A, A-, B, C certificates?