Nextcloud version: 23.0.5
Operating system and version: Debian GNU/Linux 11 (bullseye)
Apache version: Apache/2.4.53 (Debian)
PHP version : 8.0.18
Is this the first time you’ve seen this error? : Yes
Steps to replicate it:
- Update from 23.0.2 to 23.0.5
- Install certbot on a Nextcloud with openssl
- Adjust .conf of Apache2
I just updated the Nextcloud from 23.0.2 to 23.0.5 and tried to change the ssl-protocol from openssl to letsencrypt with certbot.
After adjusting the Apache2 config (and some other stuff) I found the Nextcloud scan responding this as a “Security & setup warning”:
Some files have not passed the integrity check.
Main server config:
<?php
$CONFIG = array (
'instanceid' => '*********',
'passwordsalt' => '**************',
'secret' => '*******************',
'trusted_domains' =>
array (
0 => '***.***.***.***',
1 => '**********.***',
2 => '**********.***',
),
'datadirectory' => '/media/festplatte/nextcloud',
'dbtype' => 'mysql',
'version' => '23.0.5.1',
'overwrite.cli.url' => 'https://**********',
'dbname' => 'cloud',
'dbhost' => 'localhost',
'dbport' => '',
'dbtableprefix' => 'oc_',
'mysql.utf8mb4' => true,
'dbuser' => '**********',
'dbpassword' => '******************',
'installed' => true,
'memcache.local' => '\\OC\\Memcache\\APCu',
'distributed' => '\\OC\\Memcache\\Redis',
'memcache.locking' => '\\OC\\Memcache\\Redis',
'filelocking.enabled' => 'true',
'redis' =>
array (
'host' => '/var/run/redis/redis-server.sock',
'port' => 0,
'timeout' => 0.0,
),
'logfile' => '/var/www/nextcloud/data/nextcloud.log',
'loglevel' => 2,
'logtimezone' => '*******',
'default_phone_region' => '***',
'app_install_overwrite' =>
array (
0 => 'radio',
),
'maintenance' => false,
'has_rebuilt_cache' => true,
'defaultapp' => 'dashboard,files',
'trashbin_retention_obligation' => 'auto, 90',
'updater.secret' => '**********************************************',
'theme' => '',
);
The output of my Apache log in /etc/apache2/sites-available/000-default.conf
:
<VirtualHost *:80>
serverAdmin webmasterqlocalhost
DocumentRoot /var/www/nextcloud
Redirect permanent / https://cloud.nextcloud.com/
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI} [R=301,L]
</IfModule>
RewriteCond %{SERVER_NAME} =***************
RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,NE,R=permanent]
</VirtualHost>
<IfModule mod_ssl.c>
<VirtualHost *:443>
DocumentRoot /var/www/nextcloud
SSLEngine on
SSLCertificateFile /etc/letsencrypt/live/**********/cert.pem
SSLCertificateChainFile /etc/letsencrypt/live/**********/fullchain.pem
SSLCertificateKeyFile /etc/letsencrypt/live/**********/privkey.pem
<IfModule mod_headers.c>
Header always set Strict-Transport-Security "max-age=15768000; preload"
Redirect 301 /.well-known/carddav /remote.php/dav
Redirect 301 /.well-known/caldav /remote.php/dav
</IfModule>
</VirtualHost>
</IfModule>
Is this something I should care about?
Is there a way to fix this?
Should I load the backup & fail again implementing the letsencrypt ssl correctly?
Thank you in advance for your help.