Jump to content
Froxlor Forum
  • -1

froxlor broken?

steve_adams

Asked by steve_adams,

 Share

Question

steve_adams Explorer

steve_adams

Posted
Posted

I recently updated my server OS and froxlor is responding oddly. My domains with Let's Encrypt SSL certificates are yielding a 404 page and the vhost containers for them are blank!?

# 35_froxlor_ssl_vhost_XXXXXXXX.com.conf
# Created 25.08.2021 16:31
# Do NOT manually edit this file, all changes will be deleted after the next domain change at the panel.

# Domain ID: 4 (SSL) - CustomerID: 4 - CustomerLogin: XXXX
# no ssl-certificate was specified for this domain, therefore no explicit vhost is being generated

Furthermore, when I try to access the auto-update from the backend, it presents a blank page! I'm running version 0.10.27

 

  • Downvote 1
Link to comment
Share on other sites

5 answers to this question

Recommended Posts

  • 0
steve_adams Explorer

steve_adams

Posted
  • Author
Posted

"The apache sites-enabled conf files created by Froxlor are blank". This is not clear enough? There are 3 sites on my server with Let's Encrypt certs, and all of their conf files are blank. Example below:

# 35_froxlor_ssl_vhost_XXXXXXXX.com.conf
# Created 25.08.2021 16:31
# Do NOT manually edit this file, all changes will be deleted after the next domain change at the panel.

# Domain ID: 4 (SSL) - CustomerID: 4 - CustomerLogin: XXXX
# no ssl-certificate was specified for this domain, therefore no explicit vhost is being generated

Upon accessing the ssl vhost in a web browser, no domain specific error logs from apache are generated because there's no vhost direction. A 404 error is generated in the browser, so...logically I look in the apache errors where I see:

[Fri Aug 27 10:48:19.885758 2021] [php7:error] [pid 7367] [client XXX.XXX.XXX.XXX:51060] script '/var/www/html/index.php' not found or unable to stat

Again, circling back, the SSL vhosts config files are blank!

Assuming they're created by Froxlor's cron job, I ran that in debug mode with the following command:
php /var/www/html/froxlor/scripts/froxlor_master_cronjob.php --force --debug

Here's the copied output where the errors occur:

[error] Could not find file 'keystonedesign.com.cer' in '/root/.acme.sh/keystonedesign.com/'
[error] Could not find file 'ca.cer' in '/root/.acme.sh/keystonedesign.com/'
[error] Could not find file 'fullchain.cer' in '/root/.acme.sh/keystonedesign.com/'
[error] Could not get Let's Encrypt certificate for keystonedesign.com:

[error] Could not find file 'mail.radicalcomputingconcepts.com.cer' in '/root/.acme.sh/mail.radicalcomputingconcepts.com/'
[error] Could not find file 'ca.cer' in '/root/.acme.sh/mail.radicalcomputingconcepts.com/'
[error] Could not find file 'fullchain.cer' in '/root/.acme.sh/mail.radicalcomputingconcepts.com/'
[error] Could not get Let's Encrypt certificate for mail.radicalcomputingconcepts.com:

[error] Could not find file 'flatironscannabis.com.cer' in '/root/.acme.sh/flatironscannabis.com/'
[error] Could not find file 'ca.cer' in '/root/.acme.sh/flatironscannabis.com/'
[error] Could not find file 'fullchain.cer' in '/root/.acme.sh/flatironscannabis.com/'
[error] Could not get Let's Encrypt certificate for flatironscannabis.com:

[information] Let's Encrypt certificates have been updated
[information] apache::createIpPort: creating ip/port settings for  149.56.97.154:80
[notice] 149.56.97.154:80 :: namevirtualhost-statement no longer needed for apache-2.4
[debug] 149.56.97.154:80 :: inserted vhostcontainer
[information] apache::createIpPort: creating ip/port settings for  149.56.97.154:443
[debug] System certificate key-file "/etc/letsencrypt/live/radicalcomputingconcepts.com-0001/pirvkey.pem" does not seem to exist. Disabling SSL-vhost for "mail.radicalcomputingconcepts.com"
[error] mail.radicalcomputingconcepts.com :: empty certificate file! Cannot create ssl-directives
[debug] 149.56.97.154:443 :: inserted vhostcontainer
[information] apache::createVirtualHosts: creating vhost container for domain 30, customer oddballs
[debug] System certificate key-file "/etc/letsencrypt/live/radicalcomputingconcepts.com-0001/pirvkey.pem" does not seem to exist. Disabling SSL-vhost for "blank.oddballsinvitations.net"
[error] blank.oddballsinvitations.net :: empty certificate file! Cannot create ssl-directives
[information] apache::createVirtualHosts: creating vhost container for domain 25, customer steve
[information] apache::createVirtualHosts: creating vhost container for domain 29, customer oddballs
[information] apache::createVirtualHosts: creating vhost container for domain 22, customer billyg
[debug] System certificate key-file "/etc/letsencrypt/live/radicalcomputingconcepts.com-0001/pirvkey.pem" does not seem to exist. Disabling SSL-vhost for "flatironscannabis.com"
[error] flatironscannabis.com :: empty certificate file! Cannot create ssl-directives
[information] apache::createVirtualHosts: creating vhost container for domain 4, customer steve
[debug] System certificate key-file "/etc/letsencrypt/live/radicalcomputingconcepts.com-0001/pirvkey.pem" does not seem to exist. Disabling SSL-vhost for "keystonedesign.com"
[error] keystonedesign.com :: empty certificate file! Cannot create ssl-directives
[information] apache::createVirtualHosts: creating vhost container for domain 23, customer steve
[debug] System certificate key-file "/etc/letsencrypt/live/radicalcomputingconcepts.com-0001/pirvkey.pem" does not seem to exist. Disabling SSL-vhost for "mail.radicalcomputingconcepts.com"
[error] mail.radicalcomputingconcepts.com :: empty certificate file! Cannot create ssl-directives
[information] apache::createVirtualHosts: creating vhost container for domain 26, customer steve
[information] apache::createVirtualHosts: creating vhost container for domain 1, customer oddballs
[debug] System certificate key-file "/etc/letsencrypt/live/radicalcomputingconcepts.com-0001/pirvkey.pem" does not seem to exist. Disabling SSL-vhost for "oddballsinvitations.net"
[error] oddballsinvitations.net :: empty certificate file! Cannot create ssl-directives

Analyzing this information would explain that the vhost config files are blank because let's encrypt isn't creating the certificates....or rather, creating 'empty' certificates like my empty apache conf files.

Could you suggest a way to trouble shoot the Lets' Encrypt installation please? Or point me to where I might look for Let's Encrypt misconfiguration?

Link to comment
Share on other sites
  • 0
みゆき Enthusiast

みゆき

Posted
Posted
19 minutes ago, steve_adams said:

"The apache sites-enabled conf files created by Froxlor are blank". This is not clear enough? There are 3 sites on my server with Let's Encrypt certs, and all of their conf files are blank. Example below:

# 35_froxlor_ssl_vhost_XXXXXXXX.com.conf
# Created 25.08.2021 16:31
# Do NOT manually edit this file, all changes will be deleted after the next domain change at the panel.

# Domain ID: 4 (SSL) - CustomerID: 4 - CustomerLogin: XXXX
# no ssl-certificate was specified for this domain, therefore no explicit vhost is being generated

Upon accessing the ssl vhost in a web browser, no domain specific error logs from apache are generated because there's no vhost direction. A 404 error is generated in the browser, so...logically I look in the apache errors where I see:

[Fri Aug 27 10:48:19.885758 2021] [php7:error] [pid 7367] [client XXX.XXX.XXX.XXX:51060] script '/var/www/html/index.php' not found or unable to stat

Again, circling back, the SSL vhosts config files are blank!

Assuming they're created by Froxlor's cron job, I ran that in debug mode with the following command:
php /var/www/html/froxlor/scripts/froxlor_master_cronjob.php --force --debug

Here's the copied output where the errors occur:

[error] Could not find file 'keystonedesign.com.cer' in '/root/.acme.sh/keystonedesign.com/'
[error] Could not find file 'ca.cer' in '/root/.acme.sh/keystonedesign.com/'
[error] Could not find file 'fullchain.cer' in '/root/.acme.sh/keystonedesign.com/'
[error] Could not get Let's Encrypt certificate for keystonedesign.com:

[error] Could not find file 'mail.radicalcomputingconcepts.com.cer' in '/root/.acme.sh/mail.radicalcomputingconcepts.com/'
[error] Could not find file 'ca.cer' in '/root/.acme.sh/mail.radicalcomputingconcepts.com/'
[error] Could not find file 'fullchain.cer' in '/root/.acme.sh/mail.radicalcomputingconcepts.com/'
[error] Could not get Let's Encrypt certificate for mail.radicalcomputingconcepts.com:

[error] Could not find file 'flatironscannabis.com.cer' in '/root/.acme.sh/flatironscannabis.com/'
[error] Could not find file 'ca.cer' in '/root/.acme.sh/flatironscannabis.com/'
[error] Could not find file 'fullchain.cer' in '/root/.acme.sh/flatironscannabis.com/'
[error] Could not get Let's Encrypt certificate for flatironscannabis.com:

[information] Let's Encrypt certificates have been updated
[information] apache::createIpPort: creating ip/port settings for  149.56.97.154:80
[notice] 149.56.97.154:80 :: namevirtualhost-statement no longer needed for apache-2.4
[debug] 149.56.97.154:80 :: inserted vhostcontainer
[information] apache::createIpPort: creating ip/port settings for  149.56.97.154:443
[debug] System certificate key-file "/etc/letsencrypt/live/radicalcomputingconcepts.com-0001/pirvkey.pem" does not seem to exist. Disabling SSL-vhost for "mail.radicalcomputingconcepts.com"
[error] mail.radicalcomputingconcepts.com :: empty certificate file! Cannot create ssl-directives
[debug] 149.56.97.154:443 :: inserted vhostcontainer
[information] apache::createVirtualHosts: creating vhost container for domain 30, customer oddballs
[debug] System certificate key-file "/etc/letsencrypt/live/radicalcomputingconcepts.com-0001/pirvkey.pem" does not seem to exist. Disabling SSL-vhost for "blank.oddballsinvitations.net"
[error] blank.oddballsinvitations.net :: empty certificate file! Cannot create ssl-directives
[information] apache::createVirtualHosts: creating vhost container for domain 25, customer steve
[information] apache::createVirtualHosts: creating vhost container for domain 29, customer oddballs
[information] apache::createVirtualHosts: creating vhost container for domain 22, customer billyg
[debug] System certificate key-file "/etc/letsencrypt/live/radicalcomputingconcepts.com-0001/pirvkey.pem" does not seem to exist. Disabling SSL-vhost for "flatironscannabis.com"
[error] flatironscannabis.com :: empty certificate file! Cannot create ssl-directives
[information] apache::createVirtualHosts: creating vhost container for domain 4, customer steve
[debug] System certificate key-file "/etc/letsencrypt/live/radicalcomputingconcepts.com-0001/pirvkey.pem" does not seem to exist. Disabling SSL-vhost for "keystonedesign.com"
[error] keystonedesign.com :: empty certificate file! Cannot create ssl-directives
[information] apache::createVirtualHosts: creating vhost container for domain 23, customer steve
[debug] System certificate key-file "/etc/letsencrypt/live/radicalcomputingconcepts.com-0001/pirvkey.pem" does not seem to exist. Disabling SSL-vhost for "mail.radicalcomputingconcepts.com"
[error] mail.radicalcomputingconcepts.com :: empty certificate file! Cannot create ssl-directives
[information] apache::createVirtualHosts: creating vhost container for domain 26, customer steve
[information] apache::createVirtualHosts: creating vhost container for domain 1, customer oddballs
[debug] System certificate key-file "/etc/letsencrypt/live/radicalcomputingconcepts.com-0001/pirvkey.pem" does not seem to exist. Disabling SSL-vhost for "oddballsinvitations.net"
[error] oddballsinvitations.net :: empty certificate file! Cannot create ssl-directives

Analyzing this information would explain that the vhost config files are blank because let's encrypt isn't creating the certificates....or rather, creating 'empty' certificates like my empty apache conf files.

Could you suggest a way to trouble shoot the Lets' Encrypt installation please? Or point me to where I might look for Let's Encrypt misconfiguration?

Your SSL certificates are not found.
Please check whether the files are available in "/root/acme.sh/Your Domain" and in "/etc/ssl/froxlor-custom". Otherwise check your SSL settings.

You can also check whether LE created the certificate correctly with.

"php /var/www/Froxlor/scripts/froxlor_master_cronjob.php --force --debug" or "php /var/www/Froxlor/scripts/froxlor_master_cronjob.php --letsencrypt --debug"

 

And also check your Froxlor settings for SSL!

 

addendum:

According to "Let's Debug Toolkit" no certificate was created for the domain "radicalcomputingconcepts.com" in the last 91 days, so your settings in Froxlor seem to be wrong. Please check all settings in Froxlor

Link to comment
Share on other sites
  • 0
steve_adams Explorer

steve_adams

Posted
  • Author
Posted

It would appear the error was cause by updating Apache and that in turn updated the ports.conf with additional Listen:443 statements and after the froxlor-master-cron ran it refused to listen on port 443 because that was already occupied by the main apache conf and the vhosts could not load

😕

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to question listing


×
×
  • Create New...