SSL Handshake Error


#1

When trying to validate Twitter card, I am told “ERROR: Fetching the page failed because SSL handshake error.”

Using a Wordpress site - iajlaw.com

Advice on past threads do not work.

Using an Apache server through godaddy. SSL certificate verification all come up as in compliance. Host name is correctly listed. Server, Chain and Chain all look great.

Thank you for your feedback.


#2

It looks like setting your server name to match your cert would be the answer here (or get a cert which matches).

Currently https://www.ssllabs.com/ssltest/analyze.html?d=iajlaw.com indicates that you do have the domain in the alternative name for the cert, you’d have to check the Apache config I guess.


#3

Website in the name of the alternative name has same issue - royalsportsgroup.info

Do you think it is as simple as updating to a different server?


#4

It is definitely a server configuration issue. I’ve validated it using this script.

The important line in the output is SSL3 alert read:warning:unrecognized name 5 lines down - the server name and the name being sent by the client do not match. You’ll need to ensure the ServerName is set correctly in the Apache config.

$ ./chkcardssl.sh iajlaw.com
Testing iajlaw.com...

SSL_connect:before/connect initialization
SSL_connect:SSLv2/v3 write client hello A
SSL3 alert read:warning:unrecognized name
SSL_connect:SSLv3 read server hello A
depth=3 C = US, O = "The Go Daddy Group, Inc.", OU = Go Daddy Class 2 Certification Authority
verify return:1
depth=2 C = US, ST = Arizona, L = Scottsdale, O = "GoDaddy.com, Inc.", CN = Go Daddy Root Certificate Authority - G2
verify return:1
depth=1 C = US, ST = Arizona, L = Scottsdale, O = "GoDaddy.com, Inc.", OU = http://certs.godaddy.com/repository/, CN = Go Daddy Secure Certificate Authority - G2
verify return:1
depth=0 OU = Domain Control Validated, CN = royalsportsgroup.info
verify return:1
SSL_connect:SSLv3 read server certificate A
SSL_connect:SSLv3 read server key exchange A
SSL_connect:SSLv3 read server done A
SSL_connect:SSLv3 write client key exchange A
SSL_connect:SSLv3 write change cipher spec A
SSL_connect:SSLv3 write finished A
SSL_connect:SSLv3 flush data
SSL_connect:SSLv3 read server session ticket A
SSL_connect:SSLv3 read finished A
HTTP/1.1 200 OK
Date: Mon, 27 Feb 2017 15:24:32 GMT
Server: Apache
Link: <https://iajlaw.com/wp-json/>; rel="https://api.w.org/", <https://wp.me/P7bS3J-1tG>; rel=shortlink
Strict-Transport-Security: max-age=31536000
Connection: close
Content-Type: text/html; charset=UTF-8

read:errno=0
SSL3 alert write:warning:close notify

#5

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.