Hub is showing a cURL error 60: SSL on one of my sites

I’ve installed Defender on one of my sites and I’m seeing this error when checking my sites from Hub, under the Security tab:

cURL error 60: SSL certificate problem: unable to get local user certificate

The error is there since the plugin was installed. Also, I just recently set these sites up on Amazon lightsail and I've tried adding the curl.cainfo =, with no luck.

Just another note, if I try to activate uptime, I get an error. The exact error is: "Your domain does not appear to be publicly accessible on the Internet. We can only monitor the uptime of public websites."

  • Nastia
    • Support Rock Star

    Hello Todd

    Hope all is well!

    Looks like the issue is related to installed SSL certificate. I've used a SSL online checker and it returned this message:

    The certificate is not trusted in all web browsers. You may need to install an Intermediate/chain certificate to link it to a trusted root certificate

    Please try this SSL Checker:
    https://www.sslshopper.com

    Would you please temporary remove SSL certificate and see if the issue will be fixed. If the issue will be fixed, please try another SSL certificate. You can try a free one from https://www.sslforfree.com/

    Please let us know how it went!

    Kind regards,
    Nastia

  • Todd
    • New Recruit

    For those wanting the details: I am using LetsEncrypt on AWS Lightsail.
    first I stopped the services:
    sudo /opt/bitnami/ctlscript.sh stop

    Next I removed the certificates from the /opt/bitnami/apache2/conf folder. The were named server.crt, server.key and server.csr

    And then I went to the letencrypt folder and recreated a cert:

    cd /opt/bitnami/letsencrypt
    sudo ./certbot-auto certonly --standalone -d http://www.fakedomain.com

    Finally, I linked to the new certs in the apache/conf folder.

    sudo ln -s /etc/letsencrypt/live/www.fakedomain.com/privkey.pem /opt/bitnami/apache2/conf/server.key
    sudo ln -s /etc/letsencrypt/live/www.fakedomain.com/fullchain.pem /opt/bitnami/apache2/conf/server.crt
    sudo chown root:root /opt/bitnami/apache2/conf/server*
    sudo chmod 600 /opt/bitnami/apache2/conf/server*

    the full instructions for creating the cert were found at:

    https://docs.bitnami.com/aws/how-to/generate-install-lets-encrypt-ssl/

Thank NAME, for their help.

Let NAME know exactly why they deserved these points.

Gift a custom amount of points.