Keywords: WordPress + NGINX + SSL - AWS - Technical issue - Other
This is a follow up from https://community.bitnami.com/t/ssl-errors-handshake-failure-using-lets-encrypt-on-wordpress-with-nginx-and-ssl-stack/67715?u=digitalbit which was closed without resolution.
So far I'm loving the speed of the 'WordPress with NGINX and SSL' stack on AWS. It's lightning fast but I'm having issues with SSL and a plugin.
I've set up WordPress with HTTPS and mostly everything works fine.
I've come into an issue with a plugin I use from WPMUDEV called UpTime which is part of Hummingbird. The plugin works fine with HTTP but as soon as I installed HTTPS, it spits an error back at me.
ERROR: WRITE EPROTO 140311846238080:ERROR:14077410:SSL ROUTINES:SSL23_GET_SERVER_HELLO:SSLV3 ALERT HANDSHAKE FAILURE:../DEPS/OPENSSL/OPENSSL/SSL/S23_CLNT.C:80
WPMUDEV keep telling me it's an error with my SSL certificate and say if you visit ssllabs, it fails a couple of handshake tests.
I followed the instructions to install SSL via Bitnami
sudo /opt/bitnami/letsencrypt/scripts/generate-certificate.sh -m email -d mydomain.com -d www . mydomain . com
Which worked fine, I then modify the /opt/bitnami/nginx/conf/bitnami/bitnami.conf file so that it looks like this:
return 301 https://$host$request_uri;
The website is working just fine, the only issue I have is with the plugin. What could the issue be?
I did notice that the stack is not completely up to date.
Nginx seems fine:
nginx version: nginx/1.16.0
curl 7.45.0 (x86_64-pc-linux-gnu) libcurl/7.45.0 OpenSSL/1.0.2r zlib/1.2.11
Protocols: dict file ftp ftps gopher http https imap imaps ldap ldaps pop3 pop3s rtsp smb smbs smtp smtps telnet tftp
Features: IPv6 Largefile NTLM NTLM_WB SSL libz TLS-SRP UnixSockets
both curl and open SSL have newer versions out. How can I update these?
Curl is now: 7.64.1 - March 27 2019
Open SSL is now: OpenSSL/1.1.1 September 11, 2018.
Any help would be much appreciated.
To replicate this issue:
- Create an AWS EC2 Instance and install Wordpress + NGINX + SSL
- Install Hummingbird Pro Plugin from WPMUDEV https://premium.wpmudev.org/project/wp-hummingbird/
- Run Uptime within plugin
- You wil receive error "ERROR: WRITE EPROTO 140311846238080:ERROR:14077410:SSL ROUTINES:SSL23_GET_SERVER_HELLO:SSLV3 ALERT HANDSHAKE FAILURE:../DEPS/OPENSSL/OPENSSL/SSL/S23_CLNT.C:802:" in the WPMUDEV Console
I've since tried this on another server with Apache and Let's Encrypt and it works fine so I don't think it's an issue with SSL.