Learn about Centmin Mod LEMP Stack today
Register Now

Dual SSL: RSA not working

Discussion in 'Domains, DNS, Email & SSL Certificates' started by Mrbo, Sep 28, 2018.

  1. Mrbo

    Mrbo Member

    109
    7
    18
    Jun 17, 2018
    Ratings:
    +7
    Local Time:
    5:51 AM
    Hi! I added LETSENCRYPT_DETECT='y' + DUALCERTS='y' to costum config and then run #22. The ECC seems to be working but not RSA according to SSLLabs: Result
     
  2. eva2000

    eva2000 Administrator Staff Member

    42,086
    9,504
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +14,623
    Local Time:
    8:51 AM
    Nginx 1.17.x
    MariaDB 5.5/10.x
    It's because you're running Cloudflare free plan in front of Centmin Mod Nginx. Cloudflare free plan is ECDSA SSL cert only while your Centmin Mod Nginx would run RSA + ECDSA dual ssl certs so Cloudflare to origin Centmin Mod Nginx communication will be done via ECDSA too. If you want to see RSA + ECDSA on Cloudflare front end too, then you need to upgrade to paid Cloudflare Pro plan.
     
    • Like Like x 1
    • Informative Informative x 1
  3. Mrbo

    Mrbo Member

    109
    7
    18
    Jun 17, 2018
    Ratings:
    +7
    Local Time:
    5:51 AM
    Ok. Thanks for the clarification.
    What happens to visitiors whose browser doesnt support ECDSA SSL? ( If my sites are set to always use https)