0

我在尝试在 apache 2.4 Chrome 上使用我的 ssl 证书时遇到问题,继续响应:ERR_CONNECTION_REFUSED 如果我在命令行上尝试:

   openssl s_client -connect localhost:443 -state -debug
   connect: Connection refused
   connect:errno=111

我还尝试检查防火墙上的 443 端口有什么问题:

netstat -pant | grep httpd

不回答回答任何事情

ufw status
Status: active

To                         Action      From
--                         ------      ----
443/tcp                    ALLOW       Anywhere
22                         ALLOW       Anywhere
443                        ALLOW       Anywhere
80                         ALLOW       Anywhere
443/tcp (v6)               ALLOW       Anywhere (v6)
22 (v6)                    ALLOW       Anywhere (v6)
443 (v6)                   ALLOW       Anywhere (v6)
80 (v6)                    ALLOW       Anywhere (v6)

nmap 给出这个反馈

nmap localhost

Starting Nmap 7.01 ( https://nmap.org ) at 2016-12-13 21:52 CET
Nmap scan report for localhost (127.0.0.1)
Host is up (0.0000050s latency).
Not shown: 997 closed ports
PORT     STATE SERVICE
22/tcp   open  ssh
53/tcp   open  domain
3306/tcp open  mysql

Nmap done: 1 IP address (1 host up) scanned in 1.58 seconds

如果这可以帮助你,我生成了我的证书,让我们使用 -w webroot 选项加密另一个,不行

在apache中我已经启用了aendmod ssl a2enmod ssl 考虑ssl的依赖setenvif:模块setenvif已经启用考虑ssl的依赖mime:模块mime已经启用考虑ssl的依赖socache_shmcb:模块socache_shmcb已经启用模块ssl已经启用

我的虚拟主机:

<VirtualHost *:443>
    ServerAdmin contact@domaine.fr
    ServerName domain.net
    ServerAlias www.domain.net

    SSLCertificateFile /etc/letsencrypt/live/domain.net/fullchain.pem
    SSLCertificateFile /etc/letsencrypt/live/domain.net/chain.pem
    SSLCertificateKeyFile /etc/letsencrypt/live/domain.net/privkey.pem
    ...

我的ports.conf

Listen 80

<IfModule ssl_module>
    Listen 443
</IfModule>

<IfModule mod_gnutls.c>
    Listen 443
</IfModule>
4

1 回答 1

0

VirtualHost似乎缺少该SSLEngine指令。尝试添加SSLEngine on.

https://httpd.apache.org/docs/current/mod/mod_ssl.html#sslengine

于 2016-12-14T04:39:46.407 回答