Pregunta sobre Arreglando WordPress de Wordpress:

error de curl 60

Un usuario pregunt贸 馃憞

En el plugin Health Check, veo 芦cURL error 60: Problema con el certificado SSL: no se puede obtener el certificado del emisor local禄.

Descargu茅 el 煤ltimo cURL cacert.pem a /etc/ssl/certs/curl.cacert.pem, el Suma SHA coincidencias, permite que el servidor web lo lea y recorra la estructura de directorios anterior.

En php.ini curl.cainfo = 鈥/etc/ssl/certs/curl.cacert.pem鈥 y s铆, he reiniciado Apache. Incluso desactiv茅 todos los plugins como prueba.

Activ茅 la depuraci贸n de WordPress y el registro de errores de PHP. No veo nada sobre esto en Apache error.log, PHP error log o WordPress debug.log. Veo detalles de otras actividades como el access.log; pero cuando actualizo la p谩gina Health Check, no hay datos 煤tiles para depurar.

驴Qu茅 debo mirar a continuaci贸n?

[email protected]:~# ls -l /etc/ssl/certs/curl.cacert.pem
-rw-r--r-- 1 root root 219596 Jan 23 04:12 /etc/ssl/certs/curl.cacert.pem
[email protected]:~# ls -ld /etc/ssl/certs/
drwxrwxr-x 2 root root 20480 Apr  4 03:26 /etc/ssl/certs/
[email protected]:~# ls -ld /etc/ssl/
drwxrwxr-x 4 root root 4096 Dec 23 04:10 /etc/ssl/
[email protected]:~# ls -ld /etc/
drwxr-xr-x 119 root root 12288 Apr  4 03:16 /etc/
[email protected]:~# ls -ld /
drwxr-xr-x 25 root root 4096 Apr  4 00:05 /
[email protected]:~# ps -ef | grep -i apache
root     14242  9772  0 03:42 pts/1    00:00:00 vim /etc/php/7.2/apache2/php.ini
root     14403     1  0 03:43 ?        00:00:00 /usr/sbin/apache2 -k start
www-data 15009 14403  0 03:52 ?        00:00:01 /usr/sbin/apache2 -k start
www-data 15037 14403  0 03:53 ?        00:00:00 /usr/sbin/apache2 -k start
www-data 15038 14403  0 03:53 ?        00:00:01 /usr/sbin/apache2 -k start
root     15505 14849  0 04:00 pts/3    00:00:00 grep --color=auto -i apache
[email protected]:~# 

En php.ini:

error_reporting = E_ALL & ~E_DEPRECATED & ~E_STRICT
log_errors = On
error_log = /var/log/php/error.log
disable_functions = pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_get_handler,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,pcntl_async_signals,system,exec,shell_exec,passthru,phpinfo,show_source,popen,proc_open,fopen_with_path,dbmopen,dbase_open,putenv,move_uploaded_file,chdir,rename,filepro,filepro_rowcount,filepro_retrieve,posix_mkfifo,

Yo wp-config.php:

define('WP_DEBUG', true);
define( 'WP_DEBUG_LOG', true );
define( 'WP_DEBUG_DISPLAY', true );

[email protected]:~# find /var/www/html/ -name debug.log
[email protected]:~#

[email protected]:~# cd /etc/ssl/certs/
[email protected]:/etc/ssl/certs# wget https://curl.haxx.se/ca/cacert.pem.sha256
--2019-04-04 04:06:59--  https://curl.haxx.se/ca/cacert.pem.sha256
Resolving curl.haxx.se (curl.haxx.se)... 151.101.22.49, 2a04:4e42:5::561
Connecting to curl.haxx.se (curl.haxx.se)|151.101.22.49|:443... connected.
HTTP request sent, awaiting response... 200 OK
Length: 77 [application/x-pem-file]
Saving to: 鈥榗acert.pem.sha256鈥

cacert.pem.sha256                                              100%[=================================================================================================================================================>]      77  --.-KB/s    in 0s

2019-04-04 04:06:59 (8.20 MB/s) - 鈥榗acert.pem.sha256鈥 saved [77/77]

[email protected]:/etc/ssl/certs# shasum -c cacert.pem.sha256
cacert.pem: OK
[email protected]:/etc/ssl/certs#

Este tema fue modificado hace 1 a帽o, 10 meses por. Causa: Arranque de hilo formateado fijo

(@cdevidal)

Hace 1 a帽o, 10 meses

Este problema no parece limitarse a WP. Segu铆 el URL mencionada en el resultado de error a continuaci贸n pero no vi en esa p谩gina lo siguiente que debo hacer. No prob茅 la tarjeta de bandera. El paquete ca-certificate ya est谩 instalado y la 煤ltima versi贸n.

[email protected]:~/deleteme# apt-get install ca-certificates
Reading package lists... Done
Building dependency tree
Reading state information... Done
ca-certificates is already the newest version (20180409).
0 upgraded, 0 newly installed, 0 to remove and 0 not upgraded.
[email protected]:~/deleteme# curl https://securecoop.com/
curl: (60) SSL certificate problem: unable to get local issuer certificate
More details here: https://curl.haxx.se/docs/sslcerts.html

curl failed to verify the legitimacy of the server and therefore could not
establish a secure connection to it. To learn more about this situation and
how to fix it, please visit the web page mentioned above.
[email protected]:~/deleteme# curl --cacert /etc/ssl/certs/ca-certificates.crt https://securecoop.com/
curl: (60) SSL certificate problem: unable to get local issuer certificate
More details here: https://curl.haxx.se/docs/sslcerts.html

curl failed to verify the legitimacy of the server and therefore could not
establish a secure connection to it. To learn more about this situation and
how to fix it, please visit the web page mentioned above.
[email protected]:~/deleteme# curl --cacert /etc/ssl/certs/curl.cacert.pem https://securecoop.com/
curl: (60) SSL certificate problem: unable to get local issuer certificate
More details here: https://curl.haxx.se/docs/sslcerts.html

curl failed to verify the legitimacy of the server and therefore could not
establish a secure connection to it. To learn more about this situation and
how to fix it, please visit the web page mentioned above.
[email protected]:~/deleteme#

Lanzador de hilos

(@cdevidal)

Hace 1 a帽o, 10 meses

Resuelto. Ten铆a la IP de mi servidor en / etc / hosts como nombre de dominio. Cuando coment茅 esta entrada, empez贸 a funcionar. # 1.2.3.4 SecureCoop.com

(@lucagrandicelli)

Hace 1 a帽o, 9 meses

Hola @cdevidal, tengo la misma pregunta sobre laragon. Necesito un host virtual, as铆 que tengo mi direcci贸n IP en el archivo de host. 驴Por qu茅 comentaste eso?

Lanzador de hilos

(@cdevidal)

Hace 1 a帽o, 9 meses

No lo recuerdo, para ser honesto. 驴Funciona cuando comenta sobre la IP?

驴Solucion贸 tu problema??

0 / 0

Deja una respuesta 0

Tu direcci贸n de correo electr贸nico no ser谩 publicada.