Icecast 2 and SSL

Marcell picture Marcell · Mar 15, 2018 · Viewed 11k times · Source

I am trying to make work icecast 2 and my letsencrypt SSL with no luck. So far what I did is built icecast 2 with openssl support and I also made it run but it always give the next error in the log file.

[2018-03-15  12:48:21] WARN connection/get_ssl_certificate Invalid private key file /usr/local/icecast/share/fullchain.pem
[2018-03-15  12:48:21] INFO connection/get_ssl_certificate No SSL capability on any configured ports

I have set these cert files readable by user: richard and of course I am also running the server itself with the richard user.

Maybe you have any idea what is wrong?

You may also see my config file here:

  <listen-socket>
        <port>8443</port>
        <ssl>1</ssl>
  </listen-socket>

In the path section I have set the ssl-certificate part to the SSL.

 <ssl-certificate>/usr/local/icecast/share/icecast/fullchain.pem</ssl-certificate>

Nothing so far. The server itself is starting on the port, however when visiting it through https:// it just doesn't load. with http:// the port (8443) works fine.

Any help appricated.

Answer

Marcell picture Marcell · Mar 15, 2018

Actually, I solved the issue myself.

The problem was the SSL not the configurations. Seems the LetsEncrypt SSL that is generated (fullchain.pem) is not working correctly. So instead of using that, I have copied the content from cert.pem and privkey.pem and made a new file named icecast.pem and pasted both into one. (first cert and then the privkey) and now everything is works fine and secure!

I am a genius!!!