1

Topic: SSL issues

==== REQUIRED BASIC INFO OF YOUR IREDMAIL SERVER ====
- iRedMail version (check /etc/iredmail-release): 1.6.2
- Deployed with iRedMail Easy or the downloadable installer? easy
- Linux/BSD distribution name and version: ubuntu 20.04
- Store mail accounts in which backend (LDAP/MySQL/PGSQL): im not sure
- Web server (Apache or Nginx): nginx
- Manage mail accounts with iRedAdmin-Pro? no
- [IMPORTANT] Related original log or error message is required if you're experiencing an issue.
====

mail.apexcloud.be - I can't access it. It's constantly saying "You cannot visit mail.apexcloud.be right now because the website uses HSTS. Network errors and attacks are usually temporary, so this page will probably work later.".

How would I fix this?

----

Spider Email Archiver: On-Premises, lightweight email archiving software developed by iRedMail team. Supports Amazon S3 compatible storage and custom branding.

2

Re: SSL issues

HSTS blocks access, if there is currently no valid SSL cert available.
If it is your server, then just refresh to a valid cert and it will work again.

3

Re: SSL issues

Visit https:// of the site.

4

Re: SSL issues

ZhangHuangbin wrote:

Visit https:// of the site.

I do visit the https part

5

Re: SSL issues

Cthulhu wrote:

HSTS blocks access, if there is currently no valid SSL cert available.
If it is your server, then just refresh to a valid cert and it will work again.


I got a valid SSL installed, via Les encrypt

6

Re: SSL issues

I visited mail.apexcloud.be and checked the ssl cert, turns out the cert is for just "apexcloud.be", not for or include "mail.apexcloud.be". You have to re-request a cert.

7 (edited by strannik13 2022-12-25 02:41:33)

Re: SSL issues

gamersybe186 wrote:

mail.apexcloud.be - I can't access it. It's constantly saying "You cannot visit mail.apexcloud.be right now because the website uses HSTS. Network errors and attacks are usually temporary, so this page will probably work later.".

How would I fix this?

After replacing the certificate on the server that uses the HSTS mechanism, you must clear the domain security policies in your browser. For chrome, this is done as follows: go:  chrome ://net-internals/# hsts  (type in the address bar of the browser). In the Delete domain security policies section, specify our domain, click Delete.