LinkedIn Post inspector Error: encountering server error on https URL

Running on a Linux server with Directadmin and having the issue on the LinkedIn Post Inspector: encountering server error. This is a SSL related issue.

The problem is due to a version and setting in Directadmin, specifically in the config. Updating the correct config is the solution for this issue. However please do make a backup first!

If you want to ensure that only modern and secure versions of SSL/TLS are enabled on your DirectAdmin server running CentOS, you’ll primarily focus on enabling TLS versions 1.2 and 1.3, which are the most recent and widely accepted secure versions nowadays Oct. 2023

Here’s how you can do it:

1. Backup Configuration Files: Always start by creating backups of your configuration files.

   cp /etc/httpd/conf/extra/httpd-ssl.conf /etc/httpd/conf/extra/httpd-ssl.conf.bak

2. Update Apache Configuration: Open the Apache SSL configuration:

   nano /etc/httpd/conf/extra/httpd-ssl.conf

Modify the SSLProtocol directive to only allow TLSv1.2 and TLSv1.3:

   SSLProtocol -all +TLSv1.2 +TLSv1.3

This disables all protocols by default and then specifically enables only TLS 1.2 and 1.3.

3. Restart Apache:

   systemctl restart httpd

Verify Your Configuration:

It’s always a good practice to periodically check for updates and best practices concerning server security. As new vulnerabilities can be discovered, staying up-to-date ensures that your server remains secure.

• For web services, you can use the SSL Labs Server Test to verify which protocols are enabled: https://www.ssllabs.com/ssltest/
• For mail services, you can use tools like openssl to connect and verify: echo | openssl s_client -starttls smtp -crlf -connect yourdomain.com:25 Replace yourdomain.com with your actual domain.

Extra option:

   vi /usr/local/directadmin/custombuild/options.conf

Search for ssl_configuration and it must look like: ssl_configuration=modern

./build all
 service sshd restart