0

I upgrade Debian Linux 9 (stretch) to 10 (buster).

Now I get Apache error

AH00016: Configuration Failed

in Apache error.log.

The Apache service is not starting because of this error. The Apache SSL certificates worked fine in Debian 9, now after upgrade to Debian 10, Apache does not start.

Any idea what is causing the error? How to debug it?

EDIT1: I have SSLProtocol all -SSLv2 -SSLv3 in my Apache config. May the -SSLv2 cause the error?

EDIT2: sudo apache2ctl configtest says: Syntax OK

Improve this question
4
  • That error message (AH00016) almost always means that at least one of your server definitions is trying to use a certificate that does not match its ServerName. Try running apache2 with strace and redirect the output to a log file. then search the log file for AH00016. Then, either fix the cert or fix the ServerName in the apache config. If you need to get apache running quickly, then just temporarily comment out the defs (or disable the sites) for the problematic ServerNames until you can fix it/them. That will at least get apache running for the sites without a problem. Commented Aug 23 at 10:04
  • You haven't given any details about your apache config, so here are some questions for you to think about: Are you using a wildcard cert? or using a non-wildcard cert for more than one domain? Is the cert self-signed? if so, make sure apache has the full certificate chain for your CA. Are you using a binary certificate file? try converting it to base64 or use the base64 version if you already have one. Commented Aug 23 at 10:05
  • @cas: You are right, it seems it was a problem with certificates. Yes I also use wildcard certificate and wildcard subdomain handling. I use combined base664 certificate. Finally I found, that one of my Apache virtual host config file (vhost_old.conf), which has an old domain name and was kept just for redirection to the new domain name, had the old SSL certificate. After disabling the vhost_old.conf using a2disssite, the AH00016: Configuration Failed error went away, Apache was successfully started. Thank you for your ideas and questions! Commented Aug 23 at 23:38
  • 1
    You should write up an answer detailing what you did so that this doesn't remain yet another un-answered questions. You can accept your own answer after, I think, 24 hours. Commented Aug 24 at 9:50

1 Answer 1

Reset to default
0

I found, that one of my Apache virtual host config file (vhost_old.conf), which has an old domain name and was kept just for redirection to the new domain name, had the old SSL certificate. After disabling the vhost_old.conf using a2disssite, the AH00016: Configuration Failed error went away, Apache was successfully started.

Improve this answer

You must log in to answer this question.

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.