Hey,
i've used the Tutorial from the FAQ (https://discourse.pi-hole.net/t/enabling-https-for-your-pi-hole-web-interface/5771).
In the end the lighttpd doesn't want to start up anymore. I've allready tried to reinstall the Pi-Hole.
Im running it on a RPI 3B+ with raspbian (debian stretch) and a nextcloud. I've tried multible tutorials but non of them work.
I hope someone can help me. Sorry for the bad english, hope you can understand me.
Thank you in advance.
lighttpd -v
lighttpd/1.4.45 (ssl) - a light and fast webserver
Build-Date: Jan 14 2017 21:07:19
cat lighttpd.conf
server.modules = (
"mod_access",
"mod_accesslog",
"mod_auth",
"mod_expire",
"mod_compress",
"mod_redirect",
"mod_setenv",
"mod_rewrite"
)
server.document-root = "/var/www/html"
server.error-handler-404 = "pihole/index.php"
server.upload-dirs = ( "/var/cache/lighttpd/uploads" )
server.errorlog = "/var/log/lighttpd/error.log"
server.pid-file = "/var/run/lighttpd.pid"
server.username = "www-data"
server.groupname = "www-data"
server.port = 80
accesslog.filename = "/var/log/lighttpd/access.log"
accesslog.format = "%{%s}t|%V|%r|%s|%b"
index-file.names = ( "index.php", "index.html", "index.lighttpd.html" )
url.access-deny = ( "~", ".inc", ".md", ".yml", ".ini" )
static-file.exclude-extensions = ( ".php", ".pl", ".fcgi" )
compress.cache-dir = "/var/cache/lighttpd/compress/"
compress.filetype = ( "application/javascript", "text/css", "text/html", "text/plain" )
# default listening port for IPv6 falls back to the IPv4 port
include_shell "/usr/share/lighttpd/use-ipv6.pl " + server.port
include_shell "/usr/share/lighttpd/create-mime.assign.pl"
# Prevent Lighttpd from enabling Let's Encrypt SSL for every blocked domain
#include_shell "/usr/share/lighttpd/include-conf-enabled.pl"
include_shell "find /etc/lighttpd/conf-enabled -name '*.conf' -a ! -name 'letsencrypt.conf' -printf 'include uu%p\"\n' 2>/dev/null"
# If the URL starts with /admin, it is the Web interface
$HTTP["url"] =~ "^/admin/" {
# Create a response header for debugging using curl -I
setenv.add-response-header = (
"X-Pi-hole" => "The Pi-hole Web interface is working!",
"X-Frame-Options" => "DENY"
)
$HTTP["url"] =~ ".ttf$" {
# Allow Block Page access to local fonts
setenv.add-response-header = ( "Access-Control-Allow-Origin" => "*" )
}
}
# Block . files from being served, such as .git, .github, .gitignore
$HTTP["url"] =~ "^/admin/\.(.*)" {
url.access-deny = ("")
}
# Add user chosen options held in external file
include_shell "cat external.conf 2>/dev/null"
cat external.conf
$HTTP["host"] == "my.myfritz.net" {
# Ensure the Pi-hole Block Page knows that this is not a blocked domain
setenv.add-environment = ("fqdn" => "true")
# Enable the SSL engine with a LE cert, only for this specific host
$SERVER["socket"] == ":443" {
ssl.engine = "enable"
ssl.pemfile = "/etc/letsencrypt/live/my.myfritz.net-0001/combined.pem"
ssl.ca-file = "/etc/letsencrypt/live/my.myfritz.net-0001/fullchain.pem"
ssl.honor-cipher-order = "enable"
ssl.cipher-list = "EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH"
ssl.use-compression = "disable"
ssl.use-sslv2 = "disable"
ssl.use-sslv3 = "disable"
}
# Redirect HTTP to HTTPS
$HTTP["scheme"] == "http" {
$HTTP["host"] =~ ".*" {
url.redirect = (".*" => "https://%0$0")
}
}
}
● lighttpd.service - Lighttpd Daemon
Loaded: loaded (/lib/systemd/system/lighttpd.service; enabled; vendor preset: enabled)
Active: failed (Result: exit-code) since Thu 2018-07-05 20:55:06 UTC; 30min ago
Process: 32226 ExecStart=/usr/sbin/lighttpd -D -f /etc/lighttpd/lighttpd.conf (code=exited, sta
Process: 32215 ExecStartPre=/usr/sbin/lighttpd -tt -f /etc/lighttpd/lighttpd.conf (code=exited,
Main PID: 32226 (code=exited, status=255)
Jul 05 20:55:06 raspberrypi systemd[1]: lighttpd.service: Unit entered failed state.
Jul 05 20:55:06 raspberrypi systemd[1]: lighttpd.service: Failed with result 'exit-code'.
Jul 05 20:55:06 raspberrypi systemd[1]: lighttpd.service: Service hold-off time over, scheduling
Jul 05 20:55:06 raspberrypi systemd[1]: Stopped Lighttpd Daemon.
Jul 05 20:55:06 raspberrypi systemd[1]: lighttpd.service: Start request repeated too quickly.
Jul 05 20:55:06 raspberrypi systemd[1]: Failed to start Lighttpd Daemon.
Jul 05 20:55:06 raspberrypi systemd[1]: lighttpd.service: Unit entered failed state.
Jul 05 20:55:06 raspberrypi systemd[1]: lighttpd.service: Failed with result 'exit-code'.