SYSTEM INFORMATION | |
---|---|
OS type and version | Ubuntu Linux 22.04.3 |
Virtualmin version | 7.8.2 |
Apache version | 2.4.52 |
Whereas intermittently I got the message in the topic title from all the browsers (i.e. I cannot access the site nor its backend),
a) the Apache Error Log notifies me of the following for a virtual server recently created on which I have installed Wordpress:
AH01906: myvirtualserver.xyz:443:0 server certificate is a CA certificate (BasicConstraints: CA == TRUE !?)
AH01630: client denied by server configuration: /home/myvirtualserver/public_html/server-status
and
b) the others virtual servers’ running smootly
I am here asking please how to fix.
What evidence do you think I should verify?
For the first issue AH01906, please note the SSL Certificate summary:
For the second one AH01630, I retrieved the configuration file i.e. /etc/apache2/sites-available/myvirtualserver.xyz.conf:
<VirtualHost 162.**.**.**:80 [****:4f8:***:****::1]:80>
SuexecUserGroup "#1071" "#1030"
ServerName myvirtualserver.xyz
ServerAlias www.myvirtualserver.xyz
ServerAlias mail.myvirtualserver.xyz
ServerAlias webmail.myvirtualserver.xyz
ServerAlias admin.myvirtualserver.xyz
ServerAlias autoconfig.myvirtualserver.xyz
ServerAlias autodiscover.myvirtualserver.xyz
DocumentRoot /home/myvirtualserver/public_html
ErrorLog /var/log/virtualmin/myvirtualserver.xyz_error_log
CustomLog /var/log/virtualmin/myvirtualserver.xyz_access_log combined
ScriptAlias /cgi-bin/ /home/myvirtualserver/cgi-bin/
ScriptAlias /awstats/ /home/myvirtualserver/cgi-bin/
ScriptAlias /AutoDiscover/AutoDiscover.xml /home/myvirtualserver/cgi-bin/autoconfig.cgi
ScriptAlias /Autodiscover/Autodiscover.xml /home/myvirtualserver/cgi-bin/autoconfig.cgi
ScriptAlias /autodiscover/autodiscover.xml /home/myvirtualserver/cgi-bin/autoconfig.cgi
DirectoryIndex index.php index.php4 index.php5 index.htm index.html
<Directory /home/myvirtualserver/public_html>
Options -Indexes +IncludesNOEXEC +SymLinksIfOwnerMatch
Require all granted
AllowOverride All Options=ExecCGI,Includes,IncludesNOEXEC,Indexes,MultiViews,SymLinksIfOwnerMatch
</Directory>
<Directory /home/myvirtualserver/cgi-bin>
Require all granted
AllowOverride All Options=ExecCGI,Includes,IncludesNOEXEC,Indexes,MultiViews,SymLinksIfOwnerMatch
</Directory>
ProxyPass /.well-known !
RewriteEngine on
RewriteCond %{HTTP_HOST} =webmail.myvirtualserver.xyz
RewriteRule ^(?!/.well-known)(.*) https://myvirtualserver.xyz:20000/ [R]
RewriteCond %{HTTP_HOST} =admin.myvirtualserver.xyz
RewriteRule ^(?!/.well-known)(.*) https://myvirtualserver.xyz:10000/ [R]
RemoveHandler .php
RemoveHandler .php8.1
RemoveHandler .php8.2
<Files awstats.pl>
AuthName "myvirtualserver.xyz statistics"
AuthType Basic
AuthUserFile /home/myvirtualserver/.awstats-htpasswd
require valid-user
</Files>
Redirect /mail/config-v1.1.xml /cgi-bin/autoconfig.cgi
Redirect /.well-known/autoconfig/mail/config-v1.1.xml /cgi-bin/autoconfig.cgi
<FilesMatch \.php$>
SetHandler proxy:unix:/var/php-fpm/17017872331077695.sock|fcgi://127.0.0.1
</FilesMatch>
RewriteCond %{HTTPS} off
RewriteRule ^/(?!.well-known)(.*)$ https://%{HTTP_HOST}/$1 [R]
</VirtualHost>
<VirtualHost 162.**.**.**:443 [****:4f8:***:****::1]:443>
SuexecUserGroup "#1071" "#1030"
ServerName myvirtualserver.xyz
ServerAlias www.myvirtualserver.xyz
ServerAlias mail.myvirtualserver.xyz
ServerAlias webmail.myvirtualserver.xyz
ServerAlias admin.myvirtualserver.xyz
ServerAlias autoconfig.myvirtualserver.xyz
ServerAlias autodiscover.myvirtualserver.xyz
DocumentRoot /home/myvirtualserver/public_html
ErrorLog /var/log/virtualmin/myvirtualserver.xyz_error_log
CustomLog /var/log/virtualmin/myvirtualserver.xyz_access_log combined
ScriptAlias /cgi-bin/ /home/myvirtualserver/cgi-bin/
ScriptAlias /awstats/ /home/myvirtualserver/cgi-bin/
ScriptAlias /AutoDiscover/AutoDiscover.xml /home/myvirtualserver/cgi-bin/autoconfig.cgi
ScriptAlias /Autodiscover/Autodiscover.xml /home/myvirtualserver/cgi-bin/autoconfig.cgi
ScriptAlias /autodiscover/autodiscover.xml /home/myvirtualserver/cgi-bin/autoconfig.cgi
DirectoryIndex index.php index.php4 index.php5 index.htm index.html
<Directory /home/myvirtualserver/public_html>
Options -Indexes +IncludesNOEXEC +SymLinksIfOwnerMatch
Require all granted
AllowOverride All Options=ExecCGI,Includes,IncludesNOEXEC,Indexes,MultiViews,SymLinksIfOwnerMatch
</Directory>
<Directory /home/myvirtualserver/cgi-bin>
Require all granted
AllowOverride All Options=ExecCGI,Includes,IncludesNOEXEC,Indexes,MultiViews,SymLinksIfOwnerMatch
</Directory>
ProxyPass /.well-known !
RewriteEngine on
RewriteCond %{HTTP_HOST} =webmail.myvirtualserver.xyz
RewriteRule ^(?!/.well-known)(.*) https://myvirtualserver.xyz:20000/ [R]
RewriteCond %{HTTP_HOST} =admin.myvirtualserver.xyz
RewriteRule ^(?!/.well-known)(.*) https://myvirtualserver.xyz:10000/ [R]
RemoveHandler .php
RemoveHandler .php8.1
RemoveHandler .php8.2
SSLEngine on
SSLCertificateFile /etc/ssl/virtualmin/*****************/ssl.cert
SSLCertificateKeyFile /etc/ssl/virtualmin/*****************/ssl.key
SSLProtocol all -SSLv2 -SSLv3 -TLSv1 -TLSv1.1
<Files awstats.pl>
AuthName "myvirtualserver.xyz statistics"
AuthType Basic
AuthUserFile /home/myvirtualserver/.awstats-htpasswd
require valid-user
</Files>
Redirect /mail/config-v1.1.xml /cgi-bin/autoconfig.cgi
Redirect /.well-known/autoconfig/mail/config-v1.1.xml /cgi-bin/autoconfig.cgi
SSLCACertificateFile /etc/ssl/virtualmin/*****************/ssl.ca
<FilesMatch \.php$>
SetHandler proxy:unix:/var/php-fpm/*****************.sock|fcgi://127.0.0.1
</FilesMatch>
</VirtualHost>
Do you please have any suggestions on what maintenance to do?
Thank you in advance.