Have a question or solution? Be sure to visit the SSL.com IT Security Q&A community site.
Ssl_trust_logo

Home : Browser Error: 'ssl_error_rx_record_too_long' or 'Internet Explorer cannot display the webpage' on Linux
Q12150 - HOWTO: Browser Error: 'ssl_error_rx_record_too_long' or 'Internet Explorer cannot display the webpage' on Linux

It seems obvious you’ve come across the following error while trying to setup SSL certificates on apache.

    Error code: 'ssl_error_rx_record_too_long' (Firefox) or 'Internet Explorer cannot display the webpage' (IE)

Well more often than not, you have something mis-configured! (Likely the listening port: 443). What you might want to do is check that your firewall or iptables allows incoming connections on 443.

Ubuntu:

    #sudo ufw allow 443

Ok, wonderful – that probably didn’t fix your problem. But now try going to the following address

    http://www.domain.tld:443

If you’ve successfully seen something at the above page, it means your sites are listening on that port for non-ssl. I’ll assume that your apache virtual host file has something along the lines of:

    NameVirtualHost *

   

What you’re going to want to do is force your vhosts to listen specifically on the proper ports. Changing to the following:

    NameVirtualHost *:80

   

If you’re using ubuntu your ports.conf file should likely have 443 enabled on the listening port, and you may also have default-ssl listed in your /etc/apache2/sites-available/ folder. In which case you may want to enable that.

    #sudo a2ensite /etc/apache2/sites-available/default-ssl

Basically that file has the following inside of it

   
   
    …… your server name / document root …..
    SSLEngine on
    SSLCertificateFile    /etc/ssl/certs/server.crt
    SSLCertificateKeyFile /etc/ssl/private/server.key

   

While you can use a single “shared” SSL certificate for multiple hosts, if each host needs it’s own SSL, they will need static ip addresses.

Other recommendations:

- Ensure that port 443 is open and enabled on your server. This is the standard port for https communications.

- If SSL is using a non-standard port then FireFox 3 can sometimes give this error. Ensure SSL is running on port 443.
 
- If using Apache2 check that you are using port 443 for SSL. This can be done by setting the ports.conf file as follows
 
— clip —
Listen 80
Listen 443 https
— clip — 

- Make sure you do not have more than one SSL certificate sharing the same IP. Please ensure that all SSL certificates utilise their own dedicated IP.

- If using Apache2 check your vhost config. Some users have reported changing <VirtualHost> to _default_ resolved the error.


Related Articles
No Related Articles Available.

Article Attachments
No Attachments Available.

Related External Links
Original link - http://www.xi6.org/2009/ssl-certificates-ssl_error_rx_record_too_long-ubuntu-linux/
http://kainotes.blogspot.com/2008/08/creating-ssl-certificate-for-apache-on.html
http://ubuntuforums.org/showthread.php?t=806884
Help us improve this article...
What did you think of this article?

poor 
1
2
3
4
5
6
7
8
9
10

 excellent
Tell us why you rated the content this way. (optional)
 
Comments...
Because i learned from You Alot by reading your description Approved: 9/3/2014
Hallelujah! Thanks for the great step-by-step explanation. I viisted about 10 other sites and this was the only one that worked (and used a different process than the others). Thank you! Approved: 3/2/2012
Hallelujah! Thanks for the great step-by-step elotanaxipn. I visited about 10 other sites and this was the only one that worked (and used a different process than the others). Thank you! Approved: 2/21/2012
I am using an iPhone 4 do you aicassote with apple(Mac)? or iOS? Meanning Not An Android based but other a.k.a mobile(smart) Phones?And one more thing, I am currently living in South Korea. Approved: 2/20/2012
Created on 1/12/2012.
Last Modified on 1/12/2012.
Last Modified by Administrator.
Skill Level: Intermediate.
Rated 5 out of 10 based on 5463 votes.
Print Article
Email Article