• Hi, Pleskians! We are running a UX testing of our upcoming product intended for server management and monitoring.
    We would like to invite you to have a call with us and have some fun checking our prototype. The agenda is pretty simple - we bring new design and some scenarios that you need to walk through and succeed. We will be watching and taking insights for further development of the design.
    If you would like to participate, please use this link to book a meeting. We will sent the link to the clickable prototype at the meeting.
  • (Plesk for Windows):
    MySQL Connector/ODBC 3.51, 5.1, and 5.3 are no longer shipped with Plesk because they have reached end of life. MariaDB Connector/ODBC 64-bit 3.2.4 is now used instead.
  • The Horde webmail has been deprecated. Its complete removal is scheduled for April 2025. For details and recommended actions, see the Feature and Deprecation Plan.

Issue NGINX Issue

B

bravuralion

New Pleskian
Server operating system version
Ubuntu 22.04.4 LTS
Plesk version and microupdate number
Version 18.0.60 Update #1
In Plesk i get the following Error Message:

Aufgrund folgender Fehler in den Konfigurationsvorlagen konnten keine neuen Konfigurationsdateien für den Apache-Webserver erstellt werden: nginx: [emerg] SSL_CTX_use_certificate("/opt/psa/var/certificates/scfWkDlPC") failed (SSL: error:0A00018F:SSL routines::ee key too small) nginx: configuration file /etc/nginx/nginx.conf test failed.

NGINX.CONF:
#user nginx;
worker_processes 1;

#error_log /var/log/nginx/error.log;
#error_log /var/log/nginx/error.log notice;
#error_log /var/log/nginx/error.log info;

#pid /var/run/nginx.pid;

include /etc/nginx/modules.conf.d/*.conf;

events {
worker_connections 1024;
}


http {
include mime.types;
default_type application/octet-stream;

#log_format main '$remote_addr - $remote_user [$time_local] "$request" '
# '$status $body_bytes_sent "$http_referer" '
# '"$http_user_agent" "$http_x_forwarded_for"';

#access_log /var/log/nginx/access.log main;

sendfile on;
#tcp_nopush on;

#keepalive_timeout 0;
keepalive_timeout 65;
#tcp_nodelay on;

#gzip_disable "MSIE [1-6]\.(?!.*SV1)";
proxy_buffers 8 16k;
proxy_buffer_size 32k;
fastcgi_buffers 32 32k;
fastcgi_buffer_size 64k;
fastcgi_read_timeout 600;
fastcgi_send_timeout 600;
#gzip on;
#gzip_disable "MSIE [1-6]\.(?!.*SV1)";

server_tokens off;

include /etc/nginx/conf.d/*.conf;
}

# override global parameters e.g. worker_rlimit_nofile
include /etc/nginx/*global_params;
Click to expand...

The only thing i did in /etc/ssl/openssl.cnf was changing this:


[system_default_sect]
CipherString = DEFAULT:mad:SECLEVEL=0

because with the default value nginx and plesk refused to start completly. can someone help with this issue?
 
You can check with openssl what domain is causing it:
Code: 
openssl x509 -in /opt/psa/var/certificates/scfWkDlPC -text -noout

And then try to temp remove the SSL for that domain, if nginx starts then you can renew the SSL to a new one
 
You must log in or register to reply here.

Similar threads

B
Question How is the server.conf file generated?
Replies
6
Views
660
Raul A.
R
L
Issue NGINX [emerg] "fastcgi_cache" zone "*****.it_fastcgi" is unknown in /etc/nginx/nginx.conf:41 nginx: configuration file /etc/nginx/nginx.conf
Replies
0
Views
1K
Lorenzo P
L
T
Issue Huge performance issues
Replies
11
Views
4K
mow
M
V
Issue upstream timed out (110: Connection timed out) while reading response header from upstream
Replies
13
Views
36K
varoon
V
L. Hagen
Question How to overwrite existing nginxs configurations?
Replies
1
Views
2K
Kaspar
K
Back
Top