Apache ne parvient pas à démarrer, problème ssl

Pour une raison quelconque, Apache ne démarre pas. J'ai essayé de redémarrer le server mais en vain. Il est environ 2 heures du matin et mon cerveau est frite. Voici le journal d'apache. Je n'ai touché aucun configs, certs ou keys pour provoquer cela, donc je ne sais pas ce qui s'est passé. Il y a la première ligne ici, mais c'est faux, mais la key est exacte dans l'endroit précis où j'ai spécifié le file des hôtes virtuels à regarder.

[Wed Mar 04 00:13:51.898515 2015] [ssl:error] [pid 4307] AH02203: Init: Private key not found [Wed Mar 04 00:13:51.899365 2015] [ssl:error] [pid 4307] SSL Library Error: error:0D0680A8:asn1 encoding routines:ASN1_CHECK_TLEN:wrong tag [Wed Mar 04 00:13:51.899381 2015] [ssl:error] [pid 4307] SSL Library Error: error:0D08303A:asn1 encoding routines:ASN1_TEMPLATE_NOEXP_D2I:nested asn1 error [Wed Mar 04 00:13:51.899391 2015] [ssl:error] [pid 4307] SSL Library Error: error:0D0680A8:asn1 encoding routines:ASN1_CHECK_TLEN:wrong tag [Wed Mar 04 00:13:51.899402 2015] [ssl:error] [pid 4307] SSL Library Error: error:0D07803A:asn1 encoding routines:ASN1_ITEM_EX_D2I:nested asn1 error (Type=RSA) [Wed Mar 04 00:13:51.899413 2015] [ssl:error] [pid 4307] SSL Library Error: error:04093004:rsa routines:OLD_RSA_PRIV_DECODE:RSA lib [Wed Mar 04 00:13:51.899422 2015] [ssl:error] [pid 4307] SSL Library Error: error:0D0680A8:asn1 encoding routines:ASN1_CHECK_TLEN:wrong tag [Wed Mar 04 00:13:51.899432 2015] [ssl:error] [pid 4307] SSL Library Error: error:0D07803A:asn1 encoding routines:ASN1_ITEM_EX_D2I:nested asn1 error (Type=PKCS8_PRIV_KEY_INFO) 

Virtual hosts:

 # Optionally load the headers module: #LoadModule headers_module modules/mod_headers.so LoadModule ssl_module /usr/lib/apache2/modules/mod_ssl.so SSLCertificateFile /etc/ssl/certs/foobar.org.ssl.crt SSLCertificateKeyFile /etc/ssl/private/foobar.org.ssl.key SSLCertificateChainFile /etc/ssl/certs/sub.class1.server.ca.pem SSLCACertificateFile /etc/ssl/certs/ca.pem SSLCompression Off SSLHonorCipherOrder On SSLSessionCache shmcb:/etc/apache2/logs/ssl_gcache_data(512000) SSLCipherSuite ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS:!AES256 SSLUseStapling on SSLStaplingCache "shmcb:logs/stapling-cache(150000)" SSLSessionCacheTimeout 300 <VirtualHost *:443> ServerAdmin foobar@foobar.net ServerName foobar.org # ServerAlias foobar.org DirectoryIndex index.html index.php DocumentRoot /var/www/foobar.org/public_html/ LogLevel warn ErrorDocument 404 /404.php # ErrorDocument 500 /500.html ErrorLog /var/www/foobar.org/log/error.log CustomLog /var/www/foobar.org/log/access.log combined SSLEngine on SSLProtocol all -SSLv2 -SSLv3 Header always set Ssortingct-Transport-Security "max-age=15768000;includeSubDomains" </VirtualHost> # Charge éventuellement le module d'en-têtes: # Optionally load the headers module: #LoadModule headers_module modules/mod_headers.so LoadModule ssl_module /usr/lib/apache2/modules/mod_ssl.so SSLCertificateFile /etc/ssl/certs/foobar.org.ssl.crt SSLCertificateKeyFile /etc/ssl/private/foobar.org.ssl.key SSLCertificateChainFile /etc/ssl/certs/sub.class1.server.ca.pem SSLCACertificateFile /etc/ssl/certs/ca.pem SSLCompression Off SSLHonorCipherOrder On SSLSessionCache shmcb:/etc/apache2/logs/ssl_gcache_data(512000) SSLCipherSuite ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS:!AES256 SSLUseStapling on SSLStaplingCache "shmcb:logs/stapling-cache(150000)" SSLSessionCacheTimeout 300 <VirtualHost *:443> ServerAdmin foobar@foobar.net ServerName foobar.org # ServerAlias foobar.org DirectoryIndex index.html index.php DocumentRoot /var/www/foobar.org/public_html/ LogLevel warn ErrorDocument 404 /404.php # ErrorDocument 500 /500.html ErrorLog /var/www/foobar.org/log/error.log CustomLog /var/www/foobar.org/log/access.log combined SSLEngine on SSLProtocol all -SSLv2 -SSLv3 Header always set Ssortingct-Transport-Security "max-age=15768000;includeSubDomains" </VirtualHost> #LoadModule headers_module modules / mod_headers.so # Optionally load the headers module: #LoadModule headers_module modules/mod_headers.so LoadModule ssl_module /usr/lib/apache2/modules/mod_ssl.so SSLCertificateFile /etc/ssl/certs/foobar.org.ssl.crt SSLCertificateKeyFile /etc/ssl/private/foobar.org.ssl.key SSLCertificateChainFile /etc/ssl/certs/sub.class1.server.ca.pem SSLCACertificateFile /etc/ssl/certs/ca.pem SSLCompression Off SSLHonorCipherOrder On SSLSessionCache shmcb:/etc/apache2/logs/ssl_gcache_data(512000) SSLCipherSuite ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS:!AES256 SSLUseStapling on SSLStaplingCache "shmcb:logs/stapling-cache(150000)" SSLSessionCacheTimeout 300 <VirtualHost *:443> ServerAdmin foobar@foobar.net ServerName foobar.org # ServerAlias foobar.org DirectoryIndex index.html index.php DocumentRoot /var/www/foobar.org/public_html/ LogLevel warn ErrorDocument 404 /404.php # ErrorDocument 500 /500.html ErrorLog /var/www/foobar.org/log/error.log CustomLog /var/www/foobar.org/log/access.log combined SSLEngine on SSLProtocol all -SSLv2 -SSLv3 Header always set Ssortingct-Transport-Security "max-age=15768000;includeSubDomains" </VirtualHost> LoadModule ssl_module /usr/lib/apache2/modules/mod_ssl.so # Optionally load the headers module: #LoadModule headers_module modules/mod_headers.so LoadModule ssl_module /usr/lib/apache2/modules/mod_ssl.so SSLCertificateFile /etc/ssl/certs/foobar.org.ssl.crt SSLCertificateKeyFile /etc/ssl/private/foobar.org.ssl.key SSLCertificateChainFile /etc/ssl/certs/sub.class1.server.ca.pem SSLCACertificateFile /etc/ssl/certs/ca.pem SSLCompression Off SSLHonorCipherOrder On SSLSessionCache shmcb:/etc/apache2/logs/ssl_gcache_data(512000) SSLCipherSuite ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS:!AES256 SSLUseStapling on SSLStaplingCache "shmcb:logs/stapling-cache(150000)" SSLSessionCacheTimeout 300 <VirtualHost *:443> ServerAdmin foobar@foobar.net ServerName foobar.org # ServerAlias foobar.org DirectoryIndex index.html index.php DocumentRoot /var/www/foobar.org/public_html/ LogLevel warn ErrorDocument 404 /404.php # ErrorDocument 500 /500.html ErrorLog /var/www/foobar.org/log/error.log CustomLog /var/www/foobar.org/log/access.log combined SSLEngine on SSLProtocol all -SSLv2 -SSLv3 Header always set Ssortingct-Transport-Security "max-age=15768000;includeSubDomains" </VirtualHost> SSLCertificateFile /etc/ssl/certs/foobar.org.ssl.crt # Optionally load the headers module: #LoadModule headers_module modules/mod_headers.so LoadModule ssl_module /usr/lib/apache2/modules/mod_ssl.so SSLCertificateFile /etc/ssl/certs/foobar.org.ssl.crt SSLCertificateKeyFile /etc/ssl/private/foobar.org.ssl.key SSLCertificateChainFile /etc/ssl/certs/sub.class1.server.ca.pem SSLCACertificateFile /etc/ssl/certs/ca.pem SSLCompression Off SSLHonorCipherOrder On SSLSessionCache shmcb:/etc/apache2/logs/ssl_gcache_data(512000) SSLCipherSuite ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS:!AES256 SSLUseStapling on SSLStaplingCache "shmcb:logs/stapling-cache(150000)" SSLSessionCacheTimeout 300 <VirtualHost *:443> ServerAdmin foobar@foobar.net ServerName foobar.org # ServerAlias foobar.org DirectoryIndex index.html index.php DocumentRoot /var/www/foobar.org/public_html/ LogLevel warn ErrorDocument 404 /404.php # ErrorDocument 500 /500.html ErrorLog /var/www/foobar.org/log/error.log CustomLog /var/www/foobar.org/log/access.log combined SSLEngine on SSLProtocol all -SSLv2 -SSLv3 Header always set Ssortingct-Transport-Security "max-age=15768000;includeSubDomains" </VirtualHost> SSLCertificateKeyFile /etc/ssl/private/foobar.org.ssl.key # Optionally load the headers module: #LoadModule headers_module modules/mod_headers.so LoadModule ssl_module /usr/lib/apache2/modules/mod_ssl.so SSLCertificateFile /etc/ssl/certs/foobar.org.ssl.crt SSLCertificateKeyFile /etc/ssl/private/foobar.org.ssl.key SSLCertificateChainFile /etc/ssl/certs/sub.class1.server.ca.pem SSLCACertificateFile /etc/ssl/certs/ca.pem SSLCompression Off SSLHonorCipherOrder On SSLSessionCache shmcb:/etc/apache2/logs/ssl_gcache_data(512000) SSLCipherSuite ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS:!AES256 SSLUseStapling on SSLStaplingCache "shmcb:logs/stapling-cache(150000)" SSLSessionCacheTimeout 300 <VirtualHost *:443> ServerAdmin foobar@foobar.net ServerName foobar.org # ServerAlias foobar.org DirectoryIndex index.html index.php DocumentRoot /var/www/foobar.org/public_html/ LogLevel warn ErrorDocument 404 /404.php # ErrorDocument 500 /500.html ErrorLog /var/www/foobar.org/log/error.log CustomLog /var/www/foobar.org/log/access.log combined SSLEngine on SSLProtocol all -SSLv2 -SSLv3 Header always set Ssortingct-Transport-Security "max-age=15768000;includeSubDomains" </VirtualHost> SSLCertificateChainFile /etc/ssl/certs/sub.class1.server.ca.pem # Optionally load the headers module: #LoadModule headers_module modules/mod_headers.so LoadModule ssl_module /usr/lib/apache2/modules/mod_ssl.so SSLCertificateFile /etc/ssl/certs/foobar.org.ssl.crt SSLCertificateKeyFile /etc/ssl/private/foobar.org.ssl.key SSLCertificateChainFile /etc/ssl/certs/sub.class1.server.ca.pem SSLCACertificateFile /etc/ssl/certs/ca.pem SSLCompression Off SSLHonorCipherOrder On SSLSessionCache shmcb:/etc/apache2/logs/ssl_gcache_data(512000) SSLCipherSuite ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS:!AES256 SSLUseStapling on SSLStaplingCache "shmcb:logs/stapling-cache(150000)" SSLSessionCacheTimeout 300 <VirtualHost *:443> ServerAdmin foobar@foobar.net ServerName foobar.org # ServerAlias foobar.org DirectoryIndex index.html index.php DocumentRoot /var/www/foobar.org/public_html/ LogLevel warn ErrorDocument 404 /404.php # ErrorDocument 500 /500.html ErrorLog /var/www/foobar.org/log/error.log CustomLog /var/www/foobar.org/log/access.log combined SSLEngine on SSLProtocol all -SSLv2 -SSLv3 Header always set Ssortingct-Transport-Security "max-age=15768000;includeSubDomains" </VirtualHost> SSLCACertificateFile /etc/ssl/certs/ca.pem # Optionally load the headers module: #LoadModule headers_module modules/mod_headers.so LoadModule ssl_module /usr/lib/apache2/modules/mod_ssl.so SSLCertificateFile /etc/ssl/certs/foobar.org.ssl.crt SSLCertificateKeyFile /etc/ssl/private/foobar.org.ssl.key SSLCertificateChainFile /etc/ssl/certs/sub.class1.server.ca.pem SSLCACertificateFile /etc/ssl/certs/ca.pem SSLCompression Off SSLHonorCipherOrder On SSLSessionCache shmcb:/etc/apache2/logs/ssl_gcache_data(512000) SSLCipherSuite ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS:!AES256 SSLUseStapling on SSLStaplingCache "shmcb:logs/stapling-cache(150000)" SSLSessionCacheTimeout 300 <VirtualHost *:443> ServerAdmin foobar@foobar.net ServerName foobar.org # ServerAlias foobar.org DirectoryIndex index.html index.php DocumentRoot /var/www/foobar.org/public_html/ LogLevel warn ErrorDocument 404 /404.php # ErrorDocument 500 /500.html ErrorLog /var/www/foobar.org/log/error.log CustomLog /var/www/foobar.org/log/access.log combined SSLEngine on SSLProtocol all -SSLv2 -SSLv3 Header always set Ssortingct-Transport-Security "max-age=15768000;includeSubDomains" </VirtualHost> SSLSessionCache shmcb: / etc / apache2 / logs / ssl_gcache_data (512000) # Optionally load the headers module: #LoadModule headers_module modules/mod_headers.so LoadModule ssl_module /usr/lib/apache2/modules/mod_ssl.so SSLCertificateFile /etc/ssl/certs/foobar.org.ssl.crt SSLCertificateKeyFile /etc/ssl/private/foobar.org.ssl.key SSLCertificateChainFile /etc/ssl/certs/sub.class1.server.ca.pem SSLCACertificateFile /etc/ssl/certs/ca.pem SSLCompression Off SSLHonorCipherOrder On SSLSessionCache shmcb:/etc/apache2/logs/ssl_gcache_data(512000) SSLCipherSuite ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS:!AES256 SSLUseStapling on SSLStaplingCache "shmcb:logs/stapling-cache(150000)" SSLSessionCacheTimeout 300 <VirtualHost *:443> ServerAdmin foobar@foobar.net ServerName foobar.org # ServerAlias foobar.org DirectoryIndex index.html index.php DocumentRoot /var/www/foobar.org/public_html/ LogLevel warn ErrorDocument 404 /404.php # ErrorDocument 500 /500.html ErrorLog /var/www/foobar.org/log/error.log CustomLog /var/www/foobar.org/log/access.log combined SSLEngine on SSLProtocol all -SSLv2 -SSLv3 Header always set Ssortingct-Transport-Security "max-age=15768000;includeSubDomains" </VirtualHost> SSLCipherSuite ECDH + AESGCM: DH + AESGCM: ECDH + AES256: DH + AES256: ECDH + AES128: DH + AES: ECDH + 3DES: DH + 3DES: RSA + AESGCM: RSA + AES: RSA + 3DES:! ANULL:! MD5 :! DSS:! AES256 # Optionally load the headers module: #LoadModule headers_module modules/mod_headers.so LoadModule ssl_module /usr/lib/apache2/modules/mod_ssl.so SSLCertificateFile /etc/ssl/certs/foobar.org.ssl.crt SSLCertificateKeyFile /etc/ssl/private/foobar.org.ssl.key SSLCertificateChainFile /etc/ssl/certs/sub.class1.server.ca.pem SSLCACertificateFile /etc/ssl/certs/ca.pem SSLCompression Off SSLHonorCipherOrder On SSLSessionCache shmcb:/etc/apache2/logs/ssl_gcache_data(512000) SSLCipherSuite ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS:!AES256 SSLUseStapling on SSLStaplingCache "shmcb:logs/stapling-cache(150000)" SSLSessionCacheTimeout 300 <VirtualHost *:443> ServerAdmin foobar@foobar.net ServerName foobar.org # ServerAlias foobar.org DirectoryIndex index.html index.php DocumentRoot /var/www/foobar.org/public_html/ LogLevel warn ErrorDocument 404 /404.php # ErrorDocument 500 /500.html ErrorLog /var/www/foobar.org/log/error.log CustomLog /var/www/foobar.org/log/access.log combined SSLEngine on SSLProtocol all -SSLv2 -SSLv3 Header always set Ssortingct-Transport-Security "max-age=15768000;includeSubDomains" </VirtualHost> SSLStaplingCache "shmcb: journaux / grappage-cache (150000)" # Optionally load the headers module: #LoadModule headers_module modules/mod_headers.so LoadModule ssl_module /usr/lib/apache2/modules/mod_ssl.so SSLCertificateFile /etc/ssl/certs/foobar.org.ssl.crt SSLCertificateKeyFile /etc/ssl/private/foobar.org.ssl.key SSLCertificateChainFile /etc/ssl/certs/sub.class1.server.ca.pem SSLCACertificateFile /etc/ssl/certs/ca.pem SSLCompression Off SSLHonorCipherOrder On SSLSessionCache shmcb:/etc/apache2/logs/ssl_gcache_data(512000) SSLCipherSuite ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS:!AES256 SSLUseStapling on SSLStaplingCache "shmcb:logs/stapling-cache(150000)" SSLSessionCacheTimeout 300 <VirtualHost *:443> ServerAdmin foobar@foobar.net ServerName foobar.org # ServerAlias foobar.org DirectoryIndex index.html index.php DocumentRoot /var/www/foobar.org/public_html/ LogLevel warn ErrorDocument 404 /404.php # ErrorDocument 500 /500.html ErrorLog /var/www/foobar.org/log/error.log CustomLog /var/www/foobar.org/log/access.log combined SSLEngine on SSLProtocol all -SSLv2 -SSLv3 Header always set Ssortingct-Transport-Security "max-age=15768000;includeSubDomains" </VirtualHost> <VirtualHost *: 443> # Optionally load the headers module: #LoadModule headers_module modules/mod_headers.so LoadModule ssl_module /usr/lib/apache2/modules/mod_ssl.so SSLCertificateFile /etc/ssl/certs/foobar.org.ssl.crt SSLCertificateKeyFile /etc/ssl/private/foobar.org.ssl.key SSLCertificateChainFile /etc/ssl/certs/sub.class1.server.ca.pem SSLCACertificateFile /etc/ssl/certs/ca.pem SSLCompression Off SSLHonorCipherOrder On SSLSessionCache shmcb:/etc/apache2/logs/ssl_gcache_data(512000) SSLCipherSuite ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS:!AES256 SSLUseStapling on SSLStaplingCache "shmcb:logs/stapling-cache(150000)" SSLSessionCacheTimeout 300 <VirtualHost *:443> ServerAdmin foobar@foobar.net ServerName foobar.org # ServerAlias foobar.org DirectoryIndex index.html index.php DocumentRoot /var/www/foobar.org/public_html/ LogLevel warn ErrorDocument 404 /404.php # ErrorDocument 500 /500.html ErrorLog /var/www/foobar.org/log/error.log CustomLog /var/www/foobar.org/log/access.log combined SSLEngine on SSLProtocol all -SSLv2 -SSLv3 Header always set Ssortingct-Transport-Security "max-age=15768000;includeSubDomains" </VirtualHost> ServerAdmin foobar@foobar.net # Optionally load the headers module: #LoadModule headers_module modules/mod_headers.so LoadModule ssl_module /usr/lib/apache2/modules/mod_ssl.so SSLCertificateFile /etc/ssl/certs/foobar.org.ssl.crt SSLCertificateKeyFile /etc/ssl/private/foobar.org.ssl.key SSLCertificateChainFile /etc/ssl/certs/sub.class1.server.ca.pem SSLCACertificateFile /etc/ssl/certs/ca.pem SSLCompression Off SSLHonorCipherOrder On SSLSessionCache shmcb:/etc/apache2/logs/ssl_gcache_data(512000) SSLCipherSuite ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS:!AES256 SSLUseStapling on SSLStaplingCache "shmcb:logs/stapling-cache(150000)" SSLSessionCacheTimeout 300 <VirtualHost *:443> ServerAdmin foobar@foobar.net ServerName foobar.org # ServerAlias foobar.org DirectoryIndex index.html index.php DocumentRoot /var/www/foobar.org/public_html/ LogLevel warn ErrorDocument 404 /404.php # ErrorDocument 500 /500.html ErrorLog /var/www/foobar.org/log/error.log CustomLog /var/www/foobar.org/log/access.log combined SSLEngine on SSLProtocol all -SSLv2 -SSLv3 Header always set Ssortingct-Transport-Security "max-age=15768000;includeSubDomains" </VirtualHost> ServerName foobar.org # Optionally load the headers module: #LoadModule headers_module modules/mod_headers.so LoadModule ssl_module /usr/lib/apache2/modules/mod_ssl.so SSLCertificateFile /etc/ssl/certs/foobar.org.ssl.crt SSLCertificateKeyFile /etc/ssl/private/foobar.org.ssl.key SSLCertificateChainFile /etc/ssl/certs/sub.class1.server.ca.pem SSLCACertificateFile /etc/ssl/certs/ca.pem SSLCompression Off SSLHonorCipherOrder On SSLSessionCache shmcb:/etc/apache2/logs/ssl_gcache_data(512000) SSLCipherSuite ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS:!AES256 SSLUseStapling on SSLStaplingCache "shmcb:logs/stapling-cache(150000)" SSLSessionCacheTimeout 300 <VirtualHost *:443> ServerAdmin foobar@foobar.net ServerName foobar.org # ServerAlias foobar.org DirectoryIndex index.html index.php DocumentRoot /var/www/foobar.org/public_html/ LogLevel warn ErrorDocument 404 /404.php # ErrorDocument 500 /500.html ErrorLog /var/www/foobar.org/log/error.log CustomLog /var/www/foobar.org/log/access.log combined SSLEngine on SSLProtocol all -SSLv2 -SSLv3 Header always set Ssortingct-Transport-Security "max-age=15768000;includeSubDomains" </VirtualHost> # ServerAlias ​​foobar.org # Optionally load the headers module: #LoadModule headers_module modules/mod_headers.so LoadModule ssl_module /usr/lib/apache2/modules/mod_ssl.so SSLCertificateFile /etc/ssl/certs/foobar.org.ssl.crt SSLCertificateKeyFile /etc/ssl/private/foobar.org.ssl.key SSLCertificateChainFile /etc/ssl/certs/sub.class1.server.ca.pem SSLCACertificateFile /etc/ssl/certs/ca.pem SSLCompression Off SSLHonorCipherOrder On SSLSessionCache shmcb:/etc/apache2/logs/ssl_gcache_data(512000) SSLCipherSuite ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS:!AES256 SSLUseStapling on SSLStaplingCache "shmcb:logs/stapling-cache(150000)" SSLSessionCacheTimeout 300 <VirtualHost *:443> ServerAdmin foobar@foobar.net ServerName foobar.org # ServerAlias foobar.org DirectoryIndex index.html index.php DocumentRoot /var/www/foobar.org/public_html/ LogLevel warn ErrorDocument 404 /404.php # ErrorDocument 500 /500.html ErrorLog /var/www/foobar.org/log/error.log CustomLog /var/www/foobar.org/log/access.log combined SSLEngine on SSLProtocol all -SSLv2 -SSLv3 Header always set Ssortingct-Transport-Security "max-age=15768000;includeSubDomains" </VirtualHost> DirectoryIndex index.html index.php # Optionally load the headers module: #LoadModule headers_module modules/mod_headers.so LoadModule ssl_module /usr/lib/apache2/modules/mod_ssl.so SSLCertificateFile /etc/ssl/certs/foobar.org.ssl.crt SSLCertificateKeyFile /etc/ssl/private/foobar.org.ssl.key SSLCertificateChainFile /etc/ssl/certs/sub.class1.server.ca.pem SSLCACertificateFile /etc/ssl/certs/ca.pem SSLCompression Off SSLHonorCipherOrder On SSLSessionCache shmcb:/etc/apache2/logs/ssl_gcache_data(512000) SSLCipherSuite ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS:!AES256 SSLUseStapling on SSLStaplingCache "shmcb:logs/stapling-cache(150000)" SSLSessionCacheTimeout 300 <VirtualHost *:443> ServerAdmin foobar@foobar.net ServerName foobar.org # ServerAlias foobar.org DirectoryIndex index.html index.php DocumentRoot /var/www/foobar.org/public_html/ LogLevel warn ErrorDocument 404 /404.php # ErrorDocument 500 /500.html ErrorLog /var/www/foobar.org/log/error.log CustomLog /var/www/foobar.org/log/access.log combined SSLEngine on SSLProtocol all -SSLv2 -SSLv3 Header always set Ssortingct-Transport-Security "max-age=15768000;includeSubDomains" </VirtualHost> DocumentRoot /var/www/foobar.org/public_html/ # Optionally load the headers module: #LoadModule headers_module modules/mod_headers.so LoadModule ssl_module /usr/lib/apache2/modules/mod_ssl.so SSLCertificateFile /etc/ssl/certs/foobar.org.ssl.crt SSLCertificateKeyFile /etc/ssl/private/foobar.org.ssl.key SSLCertificateChainFile /etc/ssl/certs/sub.class1.server.ca.pem SSLCACertificateFile /etc/ssl/certs/ca.pem SSLCompression Off SSLHonorCipherOrder On SSLSessionCache shmcb:/etc/apache2/logs/ssl_gcache_data(512000) SSLCipherSuite ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS:!AES256 SSLUseStapling on SSLStaplingCache "shmcb:logs/stapling-cache(150000)" SSLSessionCacheTimeout 300 <VirtualHost *:443> ServerAdmin foobar@foobar.net ServerName foobar.org # ServerAlias foobar.org DirectoryIndex index.html index.php DocumentRoot /var/www/foobar.org/public_html/ LogLevel warn ErrorDocument 404 /404.php # ErrorDocument 500 /500.html ErrorLog /var/www/foobar.org/log/error.log CustomLog /var/www/foobar.org/log/access.log combined SSLEngine on SSLProtocol all -SSLv2 -SSLv3 Header always set Ssortingct-Transport-Security "max-age=15768000;includeSubDomains" </VirtualHost> LogLevel avertir # Optionally load the headers module: #LoadModule headers_module modules/mod_headers.so LoadModule ssl_module /usr/lib/apache2/modules/mod_ssl.so SSLCertificateFile /etc/ssl/certs/foobar.org.ssl.crt SSLCertificateKeyFile /etc/ssl/private/foobar.org.ssl.key SSLCertificateChainFile /etc/ssl/certs/sub.class1.server.ca.pem SSLCACertificateFile /etc/ssl/certs/ca.pem SSLCompression Off SSLHonorCipherOrder On SSLSessionCache shmcb:/etc/apache2/logs/ssl_gcache_data(512000) SSLCipherSuite ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS:!AES256 SSLUseStapling on SSLStaplingCache "shmcb:logs/stapling-cache(150000)" SSLSessionCacheTimeout 300 <VirtualHost *:443> ServerAdmin foobar@foobar.net ServerName foobar.org # ServerAlias foobar.org DirectoryIndex index.html index.php DocumentRoot /var/www/foobar.org/public_html/ LogLevel warn ErrorDocument 404 /404.php # ErrorDocument 500 /500.html ErrorLog /var/www/foobar.org/log/error.log CustomLog /var/www/foobar.org/log/access.log combined SSLEngine on SSLProtocol all -SSLv2 -SSLv3 Header always set Ssortingct-Transport-Security "max-age=15768000;includeSubDomains" </VirtualHost> ErrorDocument 404 /404.php # Optionally load the headers module: #LoadModule headers_module modules/mod_headers.so LoadModule ssl_module /usr/lib/apache2/modules/mod_ssl.so SSLCertificateFile /etc/ssl/certs/foobar.org.ssl.crt SSLCertificateKeyFile /etc/ssl/private/foobar.org.ssl.key SSLCertificateChainFile /etc/ssl/certs/sub.class1.server.ca.pem SSLCACertificateFile /etc/ssl/certs/ca.pem SSLCompression Off SSLHonorCipherOrder On SSLSessionCache shmcb:/etc/apache2/logs/ssl_gcache_data(512000) SSLCipherSuite ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS:!AES256 SSLUseStapling on SSLStaplingCache "shmcb:logs/stapling-cache(150000)" SSLSessionCacheTimeout 300 <VirtualHost *:443> ServerAdmin foobar@foobar.net ServerName foobar.org # ServerAlias foobar.org DirectoryIndex index.html index.php DocumentRoot /var/www/foobar.org/public_html/ LogLevel warn ErrorDocument 404 /404.php # ErrorDocument 500 /500.html ErrorLog /var/www/foobar.org/log/error.log CustomLog /var/www/foobar.org/log/access.log combined SSLEngine on SSLProtocol all -SSLv2 -SSLv3 Header always set Ssortingct-Transport-Security "max-age=15768000;includeSubDomains" </VirtualHost> # ErrorDocument 500 /500.html # Optionally load the headers module: #LoadModule headers_module modules/mod_headers.so LoadModule ssl_module /usr/lib/apache2/modules/mod_ssl.so SSLCertificateFile /etc/ssl/certs/foobar.org.ssl.crt SSLCertificateKeyFile /etc/ssl/private/foobar.org.ssl.key SSLCertificateChainFile /etc/ssl/certs/sub.class1.server.ca.pem SSLCACertificateFile /etc/ssl/certs/ca.pem SSLCompression Off SSLHonorCipherOrder On SSLSessionCache shmcb:/etc/apache2/logs/ssl_gcache_data(512000) SSLCipherSuite ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS:!AES256 SSLUseStapling on SSLStaplingCache "shmcb:logs/stapling-cache(150000)" SSLSessionCacheTimeout 300 <VirtualHost *:443> ServerAdmin foobar@foobar.net ServerName foobar.org # ServerAlias foobar.org DirectoryIndex index.html index.php DocumentRoot /var/www/foobar.org/public_html/ LogLevel warn ErrorDocument 404 /404.php # ErrorDocument 500 /500.html ErrorLog /var/www/foobar.org/log/error.log CustomLog /var/www/foobar.org/log/access.log combined SSLEngine on SSLProtocol all -SSLv2 -SSLv3 Header always set Ssortingct-Transport-Security "max-age=15768000;includeSubDomains" </VirtualHost> ErrorLog /var/www/foobar.org/log/error.log # Optionally load the headers module: #LoadModule headers_module modules/mod_headers.so LoadModule ssl_module /usr/lib/apache2/modules/mod_ssl.so SSLCertificateFile /etc/ssl/certs/foobar.org.ssl.crt SSLCertificateKeyFile /etc/ssl/private/foobar.org.ssl.key SSLCertificateChainFile /etc/ssl/certs/sub.class1.server.ca.pem SSLCACertificateFile /etc/ssl/certs/ca.pem SSLCompression Off SSLHonorCipherOrder On SSLSessionCache shmcb:/etc/apache2/logs/ssl_gcache_data(512000) SSLCipherSuite ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS:!AES256 SSLUseStapling on SSLStaplingCache "shmcb:logs/stapling-cache(150000)" SSLSessionCacheTimeout 300 <VirtualHost *:443> ServerAdmin foobar@foobar.net ServerName foobar.org # ServerAlias foobar.org DirectoryIndex index.html index.php DocumentRoot /var/www/foobar.org/public_html/ LogLevel warn ErrorDocument 404 /404.php # ErrorDocument 500 /500.html ErrorLog /var/www/foobar.org/log/error.log CustomLog /var/www/foobar.org/log/access.log combined SSLEngine on SSLProtocol all -SSLv2 -SSLv3 Header always set Ssortingct-Transport-Security "max-age=15768000;includeSubDomains" </VirtualHost> CustomLog /var/www/foobar.org/log/access.log combiné # Optionally load the headers module: #LoadModule headers_module modules/mod_headers.so LoadModule ssl_module /usr/lib/apache2/modules/mod_ssl.so SSLCertificateFile /etc/ssl/certs/foobar.org.ssl.crt SSLCertificateKeyFile /etc/ssl/private/foobar.org.ssl.key SSLCertificateChainFile /etc/ssl/certs/sub.class1.server.ca.pem SSLCACertificateFile /etc/ssl/certs/ca.pem SSLCompression Off SSLHonorCipherOrder On SSLSessionCache shmcb:/etc/apache2/logs/ssl_gcache_data(512000) SSLCipherSuite ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS:!AES256 SSLUseStapling on SSLStaplingCache "shmcb:logs/stapling-cache(150000)" SSLSessionCacheTimeout 300 <VirtualHost *:443> ServerAdmin foobar@foobar.net ServerName foobar.org # ServerAlias foobar.org DirectoryIndex index.html index.php DocumentRoot /var/www/foobar.org/public_html/ LogLevel warn ErrorDocument 404 /404.php # ErrorDocument 500 /500.html ErrorLog /var/www/foobar.org/log/error.log CustomLog /var/www/foobar.org/log/access.log combined SSLEngine on SSLProtocol all -SSLv2 -SSLv3 Header always set Ssortingct-Transport-Security "max-age=15768000;includeSubDomains" </VirtualHost> SSLEngine on # Optionally load the headers module: #LoadModule headers_module modules/mod_headers.so LoadModule ssl_module /usr/lib/apache2/modules/mod_ssl.so SSLCertificateFile /etc/ssl/certs/foobar.org.ssl.crt SSLCertificateKeyFile /etc/ssl/private/foobar.org.ssl.key SSLCertificateChainFile /etc/ssl/certs/sub.class1.server.ca.pem SSLCACertificateFile /etc/ssl/certs/ca.pem SSLCompression Off SSLHonorCipherOrder On SSLSessionCache shmcb:/etc/apache2/logs/ssl_gcache_data(512000) SSLCipherSuite ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS:!AES256 SSLUseStapling on SSLStaplingCache "shmcb:logs/stapling-cache(150000)" SSLSessionCacheTimeout 300 <VirtualHost *:443> ServerAdmin foobar@foobar.net ServerName foobar.org # ServerAlias foobar.org DirectoryIndex index.html index.php DocumentRoot /var/www/foobar.org/public_html/ LogLevel warn ErrorDocument 404 /404.php # ErrorDocument 500 /500.html ErrorLog /var/www/foobar.org/log/error.log CustomLog /var/www/foobar.org/log/access.log combined SSLEngine on SSLProtocol all -SSLv2 -SSLv3 Header always set Ssortingct-Transport-Security "max-age=15768000;includeSubDomains" </VirtualHost> SSLProtocol all -SSLv2 -SSLv3 # Optionally load the headers module: #LoadModule headers_module modules/mod_headers.so LoadModule ssl_module /usr/lib/apache2/modules/mod_ssl.so SSLCertificateFile /etc/ssl/certs/foobar.org.ssl.crt SSLCertificateKeyFile /etc/ssl/private/foobar.org.ssl.key SSLCertificateChainFile /etc/ssl/certs/sub.class1.server.ca.pem SSLCACertificateFile /etc/ssl/certs/ca.pem SSLCompression Off SSLHonorCipherOrder On SSLSessionCache shmcb:/etc/apache2/logs/ssl_gcache_data(512000) SSLCipherSuite ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS:!AES256 SSLUseStapling on SSLStaplingCache "shmcb:logs/stapling-cache(150000)" SSLSessionCacheTimeout 300 <VirtualHost *:443> ServerAdmin foobar@foobar.net ServerName foobar.org # ServerAlias foobar.org DirectoryIndex index.html index.php DocumentRoot /var/www/foobar.org/public_html/ LogLevel warn ErrorDocument 404 /404.php # ErrorDocument 500 /500.html ErrorLog /var/www/foobar.org/log/error.log CustomLog /var/www/foobar.org/log/access.log combined SSLEngine on SSLProtocol all -SSLv2 -SSLv3 Header always set Ssortingct-Transport-Security "max-age=15768000;includeSubDomains" </VirtualHost> L'en-tête définit toujours Ssortingct-Transport-Security "max-age = 15768000; includeSubDomains" # Optionally load the headers module: #LoadModule headers_module modules/mod_headers.so LoadModule ssl_module /usr/lib/apache2/modules/mod_ssl.so SSLCertificateFile /etc/ssl/certs/foobar.org.ssl.crt SSLCertificateKeyFile /etc/ssl/private/foobar.org.ssl.key SSLCertificateChainFile /etc/ssl/certs/sub.class1.server.ca.pem SSLCACertificateFile /etc/ssl/certs/ca.pem SSLCompression Off SSLHonorCipherOrder On SSLSessionCache shmcb:/etc/apache2/logs/ssl_gcache_data(512000) SSLCipherSuite ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS:!AES256 SSLUseStapling on SSLStaplingCache "shmcb:logs/stapling-cache(150000)" SSLSessionCacheTimeout 300 <VirtualHost *:443> ServerAdmin foobar@foobar.net ServerName foobar.org # ServerAlias foobar.org DirectoryIndex index.html index.php DocumentRoot /var/www/foobar.org/public_html/ LogLevel warn ErrorDocument 404 /404.php # ErrorDocument 500 /500.html ErrorLog /var/www/foobar.org/log/error.log CustomLog /var/www/foobar.org/log/access.log combined SSLEngine on SSLProtocol all -SSLv2 -SSLv3 Header always set Ssortingct-Transport-Security "max-age=15768000;includeSubDomains" </VirtualHost> 

Sa sortie de command:

 -rw-rw-r-- 1 brandon brandon 1767 Mar 4 00:02 foobar.org.ssl.key -rw-r----- 1 root ssl-cert 1704 Apr 20 2013 ssl-cert-snakeoil.key -rw-rw-r-- 1 brandon brandon 1767 4 mars 00:02 foobar.org.ssl.key -rw-rw-r-- 1 brandon brandon 1767 Mar 4 00:02 foobar.org.ssl.key -rw-r----- 1 root ssl-cert 1704 Apr 20 2013 ssl-cert-snakeoil.key 

Il y a quelques problèmes critiques ici. Les erreurs que craint Apache vous indiquent que la key privée ne parvient pas à être analysée comme étant valable ASN.1. Cela suggère que vous avez des données étrangères quelque part dans la key, comme un espace. Deuxièmement, vos permissions sont trop lâches. La key privée devrait appartenir à root et avoir les permissions similaires à 640 ou -rw-r —-.