Getting 526 errors in FULL but not strict SSL/TLS mode

camden.narzt · March 7, 2022, 12:51am

I’m pretty confused at the moment, I was seeing a bunch of 526 errors earlier today even though my SSL/TLS encryption mode is Full, not Full (strict), what gives?

While the issues was happening:

If I bypass Cloudflare with curl, then the site is fine so long as I use the --cacert flag with curl.
The default virtualhost used the same self-signed cert as the virtualhost Cloudflare should be accessing.

I was able to fix it by setting my default virtualhost in apache to the virtualhost that serves the site that was seeing the errors, but that doesn’t seem like it should be neccesary, why isn’t Cloudflare traffic recognized as being for the appropriate virtualhost?

sandro · March 7, 2022, 6:10am

You currently have a security issue.

camden.narzt · March 8, 2022, 12:21am

That is an entirely unhelpful response.

sandro · March 8, 2022, 6:01am

It is entirely unhelpful to let you know that your site is insecure?

camden.narzt · March 8, 2022, 9:58pm

Yes, certainly. It doesn’t have anything to do with the issue at hand, and is therefore not helpful.

system · March 23, 2022, 9:59pm

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.