Health & Performance
Website Uptime Monitoring
Monitor the uptime of HTTP, HTTPS, DNS, UDP, TCP, email and more.
Website Speed Monitoring
Monitor full website performance by loading it with a real Chrome browser.
Real User Monitoring
Monitor the speed of user experience for visitors to your website.
Operations
Website Transaction Monitoring
Monitor multiple step transactions and get notified if something goes wrong.
Domain Expiration Monitoring
Monitor the expiration of your domains.
Public Status Page
Display real-time operational updates of your website to the public.
Security
SSL Certificate Monitoring
Monitor the SSL certificate of your website.
Virus Monitoring
New
Get alerted if your website gets infected by viruses or malware.
Ready to get started? Sign up for free
Resources
Learn
Learn new things about various topics related to website monitoring, maintenance, and development.
Comparisons
We compare different tools and services to help you choose the best one for your needs.
Questions
Find answers to common questions about website monitoring, maintenance, and development.
Product Information
Blog
Helpful information for our customers about our updates and product news.
Ready to get started? Sign up for free

How To Fix Curl Error #77 On CentOS?

Home  »  Questions  »  How To Fix Curl Error #77 On CentOS?
Published September 22, 2024

Problem: Curl Error #77 on CentOS

Curl Error #77 often happens when using the curl command on CentOS systems. This error usually occurs because of issues with SSL certificate verification, which stops connections to HTTPS websites.

Diagnosing the Problem

Checking SSL Certificate Configurations

To diagnose Curl Error #77, start by checking the SSL certificate configurations. Check the CA certificate paths by looking for the ca-bundle.crt file in the /etc/pki/tls/certs/ directory. This file is important for SSL certificate validation.

Next, check the NSS (Network Security Services) settings. NSS is a set of libraries for cross-platform development of security-enabled client and server applications. Check if NSS is set to use the system-wide CA certificate database.

Look into system-wide SSL settings. Check for any wrong settings in the SSL-related files and directories, such as /etc/ssl/ and /etc/pki/.

Tip: Verify OpenSSL Version

Check your OpenSSL version using the command openssl version. Make sure it's up-to-date, as older versions may have compatibility issues with certain SSL certificates.

Analyzing User Permissions

Compare root and non-root user access to find any permission-related issues. As seen in the example, the root user can make HTTPS requests, while cPanel users get Error #77. This difference points to a possible problem with user permissions.

Check file and directory permissions for SSL-related files. Make sure that the needed files, such as ca-bundle.crt, have the correct read permissions for all users who need to make HTTPS requests. Check the permissions of directories like /etc/pki/tls/certs/ and /etc/ssl/ to make sure the required users can access them.

Solutions to Fix Curl Error #77

Reinstalling CA Certificates

To fix Curl Error #77, reinstall the CA certificates package:

  1. Open a terminal as a root user.
  2. Run: yum reinstall ca-certificates
  3. Wait for the installation to complete.

Verify the ca-bundle.crt soft link:

  1. Go to /etc/pki/tls/certs/
  2. Check if ca-bundle.crt exists and is a valid soft link.
  3. If missing, create it: ln -s /etc/pki/ca-trust/extracted/pem/tls-ca-bundle.pem /etc/pki/tls/certs/ca-bundle.crt

Update the certificate database:

update-ca-trust extract

This updates the system's certificate store with the latest CA certificates.

Tip: Verify CA Certificate Installation

After reinstalling CA certificates, verify the installation by running:

curl -v https://www.example.com

If successful, you should see "SSL certificate verify ok" in the output.

Configuring NSS for CentOS

Set up NSS to read the OpenSSL PEM CA bundle:

  1. Check if libnsspem.so is installed: ls /usr/lib64/libnsspem.so
  2. If missing, install it: yum install nss-pem

Address libnsspem.so module issues:

  1. Verify the file location: /usr/lib64/libnsspem.so
  2. Check permissions: ls -l /usr/lib64/libnsspem.so
  3. Set correct permissions if needed: chmod 755 /usr/lib64/libnsspem.so

Update NSS database formats:

  1. Run: certutil -d sql:/etc/pki/nssdb -L
  2. If you see errors, recreate the database: certutil -d sql:/etc/pki/nssdb -N

Adjusting User-Specific SSL Settings

For cPanel users with Curl Error #77:

  1. Log in to cPanel
  2. Go to SSL/TLS Manager
  3. Click on "Manage SSL Hosts"
  4. Check if the correct SSL certificate is assigned to the domain

Set correct paths for SSL certificates:

  1. In cPanel, go to "SSL/TLS Status"
  2. Verify that the correct certificate paths are set for each domain

Check SSL-related file permissions:

  1. As root, run: ls -l /etc/pki/tls/certs/ca-bundle.crt
  2. Make it readable by all users: chmod 644 /etc/pki/tls/certs/ca-bundle.crt
  3. Check directory permissions: ls -ld /etc/pki/tls/certs/
  4. Set correct permissions: chmod 755 /etc/pki/tls/certs/

These steps should help you resolve Curl Error #77 on your CentOS system.

Get Alerted When Your Website Goes Down
Uptime & speed monitoring for websites
Multiple-step transaction monitoring
SSL certificate health monitoring
Virus & malware monitoring
Status pages & incident alerts
Resources
Pricing
Comparisons
Knowledge Base
Blog
Learn
Questions
Monitoring Checkpoints
Solutions
Contact Us
Public Roadmap
Affiliate Program
Sitemap
API Documentation
Products
Uptime Monitoring
Speed Monitoring
Transaction Monitoring
Real User Monitoring
SSL Monitoring
Domain Monitoring
Public Status Page
Virus Monitoring
New
Tools
Website Availability Test
Uptime Calculator
Cron Expression Generator
Cron Expression Descriptor
Hex to RGB Converter
RGB to Hex Converter
Show All Tools
Legal
Privacy Policy
Cookie Policy
Terms and Conditions
GDPR
© 2015-2024 Uptimia. All rights reserved.
English English
English English
Deutsch Deutsch
Français Français