WGET-SSL Not Found? Fixing SSL Handshake, Invalid SSL & Other cPanel Issues

Muhammad Khan Avatar
Muhammad Khan

·

·

WGET-SSL Not Found? Fixing SSL Handshake, Invalid SSL & Other cPanel Issues

Introduction

When managing a website through cPanel, SSL errors and domain changes can be a significant challenge. Errors like “wget-ssl: not found,” “ERR_SSL_PROTOCOL_ERROR,” “SSL handshake failed error code 525,” and “invalid SSL certificate error code 526” can prevent smooth website operations and negatively impact security and user trust. This comprehensive guide covers everything from enabling SSI on cPanel domains to resolving complex SSL errors and changing primary domains in cPanel.

How to Enable SSI on cPanel Domain

Server-Side Includes (SSI) allows dynamic content to be included in web pages. To enable it in cPanel, follow these steps:

Step 1: Access Apache Handlers

  1. Log in to your cPanel account.
  2. In the search bar, type Apache Handlers and click on the option.
  3. Under “Create an Apache Handler,” enter:
    • Handler: server-parsed
    • Extensions: .shtml .html .htm

Step 2: Modify the .htaccess File

  1. Open File Manager in cPanel.
  2. Locate and edit the .htaccess file (found in the root directory of your website).
  3. Add the following lines:AddType text/html .shtml AddHandler server-parsed .shtml Options +Includes

Step 3: Verify SSI Functionality

  1. Create a test file (test.shtml) in your website directory.
  2. Add the following line:<!--#echo var="DATE_LOCAL" -->
  3. Save the file and access it in a browser to see if SSI is working correctly.
Fixing SSL Handshake, Invalid SSL & Other cPanel Issues
Fixing SSL Handshake, Invalid SSL & Other cPanel Issues

Changing the Primary Domain in cPanel

Changing your primary domain in cPanel is useful for rebranding, migrating websites, or updating business details.

Method 1: Requesting a Domain Change from Hosting Support

  1. Check with Your Hosting Provider – Some hosting companies restrict direct domain changes.
  2. Backup Your Website – Use the Backup Wizard in cPanel to create a full backup.
  3. Submit a Request – Contact customer support with your new domain details.
  4. Update DNS Records – Ensure the new domain is pointed to your hosting server.
  5. Adjust Website Files – Update configuration files like .htaccess, wp-config.php, and database settings.

Method 2: Changing the Primary Domain via WHM (For Resellers)

  1. Log in to WHM as a root user.
  2. Navigate to Modify an Account and select the cPanel account.
  3. Enter the new domain name and click Save Changes.
  4. Update DNS and Clear Cache to reflect the new domain settings.

Fixing Common SSL Errors in cPanel

ERR_SSL_PROTOCOL_ERROR

This error is caused by incorrect SSL settings or an expired certificate.

Solution:

  1. Clear Browser Cache – Remove cached SSL sessions in your browser.
  2. Check SSL Certificate – Verify your certificate’s expiration date in SSL/TLS Status.
  3. Force HTTPS Redirection – Modify the .htaccess file:RewriteEngine On RewriteCond %{HTTPS} !=on RewriteRule ^(.*)$ https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]
  4. Update OpenSSL & cURL – Run:sudo apt update && sudo apt upgrade openssl curl

SSL Handshake Failed Error Code 525

This error means Cloudflare failed to establish an SSL connection.

Solution:

  1. Set Cloudflare SSL to Full (Strict).
  2. Verify Certificate Chain using an SSL checker tool.
  3. Update Cipher Suites in Apache or Nginx.

wget-ssl: not found

This error occurs when wget lacks SSL support.

Solution:

  1. Install OpenSSL:sudo apt install openssl
  2. Reinstall wget with SSL support:sudo apt install wget

ERR_SSL_KEY_USAGE_INCOMPATIBLE

This error indicates the certificate’s key usage does not support encryption.

Solution:

  1. Generate a new certificate using RSA 2048-bit encryption.
  2. Install the correct Intermediate Certificate.

SSL_ERROR_RX_RECORD_TOO_LONG

Occurs when the server isn’t properly configured to handle SSL connections.

Solution:

  1. Check Apache Port 443 Configuration:sudo nano /etc/apache2/sites-available/default-ssl.conf
  2. Ensure the VirtualHost directive includes:<VirtualHost *:443> SSLEngine on SSLCertificateFile /path/to/certificate.crt SSLCertificateKeyFile /path/to/private.key </VirtualHost>
  3. Restart Apache:sudo systemctl restart apache2
Fixing SSL Handshake, Invalid SSL
Fixing SSL Handshake, Invalid SSL

Invalid SSL Certificate Error Code 526

A 526 error occurs when Cloudflare detects an invalid SSL certificate.

Solution:

  1. Set Cloudflare SSL Mode to Full (Strict).
  2. Reinstall SSL Certificate via cPanel’s SSL/TLS Manager.

Free SSL Certificate from HostingsGratis

For a free SSL certificate, visit HostingsGratis and follow their setup instructions.

Disabling SSL 2.0 (Obsolete Protocol)

SSL 2.0 is insecure and should be disabled.

Steps to Disable SSL 2.0:

  1. Open Apache Configuration:sudo nano /etc/apache2/mods-available/ssl.conf
  2. Add:SSLProtocol -SSLv2 -SSLv3 +TLSv1.2 +TLSv1.3
  3. Restart Apache:sudo systemctl restart apache2

Frequently Asked Questions (FAQ)

1. How do I enable SSI on a cPanel domain?

To enable Server-Side Includes (SSI) on your cPanel domain:

  • Go to Apache Handlers in cPanel.
  • Add a handler: server-parsed for .shtml .html .htm extensions.
  • Edit the .htaccess file and add: apacheCopyEditAddType text/html .shtml AddHandler server-parsed .shtml Options +Includes
  • Save the file and test with an SSI command like <!--#echo var="DATE_LOCAL" -->.

2. How can I change the primary domain in cPanel?

To change the primary domain in cPanel, follow these steps:

  • Contact your hosting provider and request a domain change.
  • Backup your website using cPanel’s Backup Wizard.
  • Update your DNS records to point the new domain.
  • Modify .htaccess, wp-config.php, and database settings to reflect the change.
  • Clear your cache and check for broken links.

3. How do I fix ERR_SSL_PROTOCOL_ERROR in cPanel?

To resolve ERR_SSL_PROTOCOL_ERROR, try the following:

  • Clear your browser cache and restart it.
  • Check your SSL certificate’s validity in cPanel > SSL/TLS Status.
  • Update your .htaccess file to force HTTPS: apacheCopyEditRewriteEngine On RewriteCond %{HTTPS} !=on RewriteRule ^(.*)$ https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]
  • Restart your web server.

4. Why am I seeing ‘SSL handshake failed error code 525’?

A 525 SSL handshake failed error happens due to Cloudflare misconfigurations:

  • Ensure Cloudflare’s SSL is set to Full (Strict).
  • Verify your SSL certificate is correctly installed in cPanel.
  • Check if your server supports TLS 1.2 or later.

5. How do I fix ‘wget-ssl: not found’ error?

The wget-ssl: not found error occurs when wget lacks SSL support:

  • Install OpenSSL: bashCopyEditsudo apt install openssl
  • Reinstall wget with SSL support: bashCopyEditsudo apt install wget
  • Try running wget --no-check-certificate <URL>.

6. How to fix ERR_SSL_KEY_USAGE_INCOMPATIBLE?

This error happens when the SSL certificate has incorrect key usage attributes.
To fix it:

  • Obtain a new 2048-bit RSA certificate.
  • Reinstall your SSL certificate in cPanel > SSL/TLS Manager.
  • Ensure the Intermediate Certificate is installed correctly.

7. What is SSL_ERROR_RX_RECORD_TOO_LONG and how to fix it?

This error occurs when the server isn’t properly configured for SSL.
To fix:

  • Ensure Apache/Nginx is listening on port 443.
  • Edit your SSL VirtualHost block: apacheCopyEdit<VirtualHost *:443> SSLEngine on SSLCertificateFile /path/to/certificate.crt SSLCertificateKeyFile /path/to/private.key </VirtualHost>
  • Restart your web server: bashCopyEditsudo systemctl restart apache2

8. How can I get a free SSL certificate from HostingsGratis?

You can obtain a free SSL certificate by visiting HostingsGratis.

  • Follow their setup guide to install SSL on your cPanel domain.
  • Verify your installation using SSL/TLS Manager in cPanel.

9. How do I disable SSL 2.0 on my server?

To disable SSL 2.0, edit your Apache/Nginx configuration:

  • Open the SSL settings: bashCopyEditsudo nano /etc/apache2/mods-available/ssl.conf
  • Add: apacheCopyEditSSLProtocol -SSLv2 -SSLv3 +TLSv1.2 +TLSv1.3
  • Restart Apache: bashCopyEditsudo systemctl restart apache2

10. What does ‘Invalid SSL Certificate Error Code 526’ mean?

Error Code 526 means Cloudflare detected an invalid SSL certificate.
To resolve it:

  • Ensure Cloudflare SSL Mode is set to Full (Strict).
  • Generate a valid SSL certificate in cPanel > SSL/TLS Manager.
  • Verify your private key and certificate match.

Conclusion

Managing SSL errors, enabling SSI, and changing primary domains in cPanel require careful troubleshooting. This guide covers solutions for ERR_SSL_PROTOCOL_ERROR, wget-ssl: not found, SSL handshake failed error code 525, and more. Regular SSL maintenance, proper configurations, and staying updated with security best practices help ensure a secure and reliable website.

For persistent issues, contact your hosting provider for further assistance. Happy hosting!

Leave a Reply

Your email address will not be published. Required fields are marked *