1. Output of caddy version
:
v2.6.1 h1:EDqo59TyYWhXQnfde93Mmv4FJfYe00dO60zMiEt+pzo=
2. How I run Caddy:
caddy.exe run
a. System environment:
Win10
b. Command:
n/a
c. Service/unit/compose file:
n/a
d. My complete Caddy config:
{
log stdout
log caddy-log {
output file caddy.log {
roll_size 10MiB
roll_keep 5
roll_keep_for 2160h
}
}
default_sni myplace.com
}
webstuff.myplace.com:8443 {
reverse_proxy :8080
header / Strict-Transport-Security "max-age=63072000"
}
3. The problem I’m having:
I did a security scan from SSL Security Test | ImmuniWeb and it reports a “Misconfiguration or weakness” in the “CERTIFICATE CHAIN” section:
"Server sends useless certificates."
Root CA vvISRG Root X1
Intermediate CA vR3
Server certificate webstuff.myplace.com
Is this a valid issue, or is it benign?
Do these certs need to be sent back?
4. Error messages and/or full log output:
n/a
5. What I already tried:
n/a