• We value your experience with Plesk during 2024
    Plesk strives to perform even better in 2025. To help us improve further, please answer a few questions about your experience with Plesk Obsidian 2024.
    Please take this short survey:
    https://pt-research.typeform.com/to/AmZvSXkx
  • The Horde webmail has been deprecated. Its complete removal is scheduled for April 2025. For details and recommended actions, see the Feature and Deprecation Plan.
  • We’re working on enhancing the Monitoring feature in Plesk, and we could really use your expertise! If you’re open to sharing your experiences with server and website monitoring or providing feedback, we’d love to have a one-hour online meeting with you.

Issue NGINX Issue

B

bravuralion

New Pleskian
Server operating system version
Ubuntu 22.04.4 LTS
Plesk version and microupdate number
Version 18.0.60 Update #1
In Plesk i get the following Error Message:

Aufgrund folgender Fehler in den Konfigurationsvorlagen konnten keine neuen Konfigurationsdateien für den Apache-Webserver erstellt werden: nginx: [emerg] SSL_CTX_use_certificate("/opt/psa/var/certificates/scfWkDlPC") failed (SSL: error:0A00018F:SSL routines::ee key too small) nginx: configuration file /etc/nginx/nginx.conf test failed.

NGINX.CONF:
#user nginx;
worker_processes 1;

#error_log /var/log/nginx/error.log;
#error_log /var/log/nginx/error.log notice;
#error_log /var/log/nginx/error.log info;

#pid /var/run/nginx.pid;

include /etc/nginx/modules.conf.d/*.conf;

events {
worker_connections 1024;
}


http {
include mime.types;
default_type application/octet-stream;

#log_format main '$remote_addr - $remote_user [$time_local] "$request" '
# '$status $body_bytes_sent "$http_referer" '
# '"$http_user_agent" "$http_x_forwarded_for"';

#access_log /var/log/nginx/access.log main;

sendfile on;
#tcp_nopush on;

#keepalive_timeout 0;
keepalive_timeout 65;
#tcp_nodelay on;

#gzip_disable "MSIE [1-6]\.(?!.*SV1)";
proxy_buffers 8 16k;
proxy_buffer_size 32k;
fastcgi_buffers 32 32k;
fastcgi_buffer_size 64k;
fastcgi_read_timeout 600;
fastcgi_send_timeout 600;
#gzip on;
#gzip_disable "MSIE [1-6]\.(?!.*SV1)";

server_tokens off;

include /etc/nginx/conf.d/*.conf;
}

# override global parameters e.g. worker_rlimit_nofile
include /etc/nginx/*global_params;
Click to expand...

The only thing i did in /etc/ssl/openssl.cnf was changing this:


[system_default_sect]
CipherString = DEFAULT:mad:SECLEVEL=0

because with the default value nginx and plesk refused to start completly. can someone help with this issue?
 
You can check with openssl what domain is causing it:
Code: 
openssl x509 -in /opt/psa/var/certificates/scfWkDlPC -text -noout

And then try to temp remove the SSL for that domain, if nginx starts then you can renew the SSL to a new one
 
You must log in or register to reply here.

Similar threads

L
Issue NGINX [emerg] "fastcgi_cache" zone "*****.it_fastcgi" is unknown in /etc/nginx/nginx.conf:41 nginx: configuration file /etc/nginx/nginx.conf
Replies
0
Views
840
Lorenzo P
L
T
Issue Huge performance issues
Replies
11
Views
3K
mow
M
V
Issue upstream timed out (110: Connection timed out) while reading response header from upstream
Replies
13
Views
31K
varoon
V
L. Hagen
Question How to overwrite existing nginxs configurations?
Replies
1
Views
2K
Kaspar
K
T
Question Plesk Odoo Nginx Reverse Proxy
Replies
4
Views
6K
Edinson
E
Back
Top