• If you are still using CentOS 7.9, it's time to convert to Alma 8 with the free centos2alma tool by Plesk or Plesk Migrator. Please let us know your experiences or concerns in this thread:
    CentOS2Alma discussion
  • Please beaware of a breaking change in the REST API on the next Plesk release (18.0.62).
    Starting from Plesk Obsidian 18.0.62, requests to REST API containing the Content-Type header with a media-type directive other than “application/json” will result in the HTTP “415 Unsupported Media Type” client error response code. Read more here

Issue NGINX Issue

B

bravuralion

New Pleskian
Server operating system version
Ubuntu 22.04.4 LTS
Plesk version and microupdate number
Version 18.0.60 Update #1
In Plesk i get the following Error Message:

Aufgrund folgender Fehler in den Konfigurationsvorlagen konnten keine neuen Konfigurationsdateien für den Apache-Webserver erstellt werden: nginx: [emerg] SSL_CTX_use_certificate("/opt/psa/var/certificates/scfWkDlPC") failed (SSL: error:0A00018F:SSL routines::ee key too small) nginx: configuration file /etc/nginx/nginx.conf test failed.

NGINX.CONF:
#user nginx;
worker_processes 1;

#error_log /var/log/nginx/error.log;
#error_log /var/log/nginx/error.log notice;
#error_log /var/log/nginx/error.log info;

#pid /var/run/nginx.pid;

include /etc/nginx/modules.conf.d/*.conf;

events {
worker_connections 1024;
}


http {
include mime.types;
default_type application/octet-stream;

#log_format main '$remote_addr - $remote_user [$time_local] "$request" '
# '$status $body_bytes_sent "$http_referer" '
# '"$http_user_agent" "$http_x_forwarded_for"';

#access_log /var/log/nginx/access.log main;

sendfile on;
#tcp_nopush on;

#keepalive_timeout 0;
keepalive_timeout 65;
#tcp_nodelay on;

#gzip_disable "MSIE [1-6]\.(?!.*SV1)";
proxy_buffers 8 16k;
proxy_buffer_size 32k;
fastcgi_buffers 32 32k;
fastcgi_buffer_size 64k;
fastcgi_read_timeout 600;
fastcgi_send_timeout 600;
#gzip on;
#gzip_disable "MSIE [1-6]\.(?!.*SV1)";

server_tokens off;

include /etc/nginx/conf.d/*.conf;
}

# override global parameters e.g. worker_rlimit_nofile
include /etc/nginx/*global_params;
Click to expand...

The only thing i did in /etc/ssl/openssl.cnf was changing this:


[system_default_sect]
CipherString = DEFAULT:mad:SECLEVEL=0

because with the default value nginx and plesk refused to start completly. can someone help with this issue?
 
You can check with openssl what domain is causing it:
Code: 
openssl x509 -in /opt/psa/var/certificates/scfWkDlPC -text -noout

And then try to temp remove the SSL for that domain, if nginx starts then you can renew the SSL to a new one
 
You must log in or register to reply here.

Similar threads

L
Issue NGINX [emerg] "fastcgi_cache" zone "*****.it_fastcgi" is unknown in /etc/nginx/nginx.conf:41 nginx: configuration file /etc/nginx/nginx.conf
Replies
0
Views
589
Lorenzo P
L
T
Issue Huge performance issues
Replies
11
Views
2K
mow
M
V
Issue upstream timed out (110: Connection timed out) while reading response header from upstream
Replies
13
Views
23K
varoon
V
L. Hagen
Question How to overwrite existing nginxs configurations?
Replies
1
Views
1K
Kaspar
K
T
Question Plesk Odoo Nginx Reverse Proxy
Replies
4
Views
5K
Edinson
E
Back
Top