• Our team is looking to connect with folks who use email services provided by Plesk, or a premium service. If you'd like to be part of the discovery process and share your experiences, we invite you to complete this short screening survey. If your responses match the persona we are looking for, you'll receive a link to schedule a call at your convenience. We look forward to hearing from you!
  • The BIND DNS server has already been deprecated and removed from Plesk for Windows.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS. We strongly recommend transitioning to Microsoft DNS within the next 6 weeks, before the Plesk 18.0.70 release.
  • The Horde component is removed from Plesk Installer. We recommend switching to another webmail software supported in Plesk.

Resolved "ssl_ciphers" directive is duplicate in /etc/nginx/conf.d/ssl.conf

B

batgranny

New Pleskian
I recently upgraded Plesk to Onyx 17.5 and am unable to generate new configuration files for Apache. I see an error on the Plesk home page:

New configuration files for the Apache web server were not created due to the errors in configuration templates: nginx: [emerg] "ssl_ciphers" directive is duplicate in /etc/nginx/conf.d/ssl.conf:1 nginx: configuration file /etc/nginx/nginx.conf test failed . Detailed error descriptions were sent to you by email. Please resolve the issues and click here to generate broken configuration files once again or here to generate all configuration files. See the details in Configuration Troubleshooter

Nginx is actually disabled but for some reason it is preventing me from changing the Apache configuration to optimise the Apache SSL ciphers for PCI compliance. I have done a search for "ssl_ciphers" in /etc/nginx and can see the following files:

/etc/nginx/conf.d/ssl.bak:
/etc/nginx/nginx.conf.170829-02008

ssl.bak is ssl.conf which I have renamed and commented the ssl info out of.

How do I resolve this issue? Do I have to re-enable Nginx and restart / disable? Are there other Nginx configuration files located somewhere?
 
Thanks for your reply, the result of that command is:

nginx: the configuration file /etc/nginx/nginx.conf syntax is ok
nginx: configuration file /etc/nginx/nginx.conf test is successful
 
From Resolved - Can't login to plesk panel after updating from 12.0 to onyx by @UFHH01:
# find /etc/sw-cp-server -type f -name "*.conf" -exec grep --color -Hni "ssl_ciphers" {} \;
do the same for
# find /etc/nginx ......
# find /etc/httpd ......
# find /etc/apache2 ......
Then delete one of the duplicate sets so that only a single set remains. This issue appears in several flavors, and the solution is always to remove all duplicates, then restart the web server(s) and you are all set. No matter what the situation is, just make sure that only a single ssl_ciphers entry resides on the system. (Make backups of the files that you remove before removing them.)
 
Thank you Peter, making sure that there was only one set of SSL cipher settings across Apache and Nginx, then restarting all the services sorted the issue.
 
You must log in or register to reply here.

Similar threads

J
Issue Map Directive
Replies
1
Views
466
Raul A.
R
Jürgen_T
Issue Modsecurity works with Apache but error with nginx
Replies
5
Views
1K
Raul A.
R
andreios
Issue Nginx: unknown directive "modsecurity" when try to activate Comodo (modsecurity)
Replies
3
Views
1K
Kaspar@Plesk
Kaspar@Plesk
brother4
Question Best way to block direct PHP file access and ensure .htaccess rules are always applied with Nginx as a reverse proxy?
Replies
1
Views
1K
brother4
brother4
R
Issue Cannot restart NGINX
Replies
1
Views
528
Raul A.
R
Back
Top