Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

SOLVED Auto SSL DCV Validation error Bug on Apache Custom Port

Discussion in 'Security' started by syslint, Jan 12, 2018.

Tags:
  1. syslint

    syslint Well-Known Member Verifed Vendor

    Joined:
    Oct 9, 2006
    Messages:
    262
    Likes Received:
    6
    Trophy Points:
    168
    Location:
    India
    cPanel Access Level:
    Root Administrator
    Twitter:
    There is an issue with apache DCV validation while apache runs on a custom port. This may result in accessing the DCV temporary files via proxy from another webserver in port 80

    Steps to Recreate the issue:

    1) Access the key webdisk.example.com/.well-known/pki-validation/DE86811B0380F9DFF632716F443CF18D.txt via apache on port 80 works fine without redirection to ssl port
    2) Change apache port to some other port say 9080 , then webdisk.example.com:9080/.well-known/pki-validation/DE86811B0380F9DFF632716F443CF18D.txt, won't work. It always redirect to HTTPS.

    For updating the correct Autossl certificate those subdomain urls must be need to be working in HTTP instead of HTTPS even with custom port change in apache. This issue exist in all versions of cpanel.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #1 syslint, Jan 12, 2018
    Last edited by a moderator: Jan 13, 2018
  2. cPanelMichael

    cPanelMichael Technical Support Community Manager Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    46,390
    Likes Received:
    2,046
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Twitter:
    Hi @syslint,

    I just wanted to follow up to let you know we do have an additional internal case open to determine if it's feasible for AutoSSL to properly detect the custom Apache port. I'll update this thread with more information on the status of this case as it becomes available.

    Thank you.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #2 cPanelMichael, Jan 19, 2018
  3. cPanelMichael

    cPanelMichael Technical Support Community Manager Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    46,390
    Likes Received:
    2,046
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Twitter:
    Hello,

    To update, internal case CPANEL-18074 will allow for AutoSSL DCV with proxy subdomains when using a custom Apache (non-SSL) port. I'll update this thread again once it's published.

    Thank you.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #3 cPanelMichael, Jan 19, 2018
  4. cPanelMichael

    cPanelMichael Technical Support Community Manager Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    46,390
    Likes Received:
    2,046
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Twitter:
    Hello,

    Internal case CPANEL-18074 is now published as part of cPanel version 70:

    Fixed case CPANEL-18074: Allow proxy subdomain HTTP DCV to work over nonstandard non-SSL port.

    There's an open request to backport this to cPanel version 68 as well. I'll update this thread with more information on the status of the backport as it becomes available.

    Thank you.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #4 cPanelMichael, Jan 25, 2018
    Jose Nobile likes this.
  5. Jose Nobile

    Jose Nobile Member

    Joined:
    Jun 5, 2015
    Messages:
    5
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    Cali, Colombia
    cPanel Access Level:
    Root Administrator
    Posting this only to receive a notification when it is backported to the current cPanel version. Is there another way to subscribe to notifications?
     
    #5 Jose Nobile, Jan 26, 2018
  6. Infopro

    Infopro cPanel Sr. Product Evangelist Staff Member

    Joined:
    May 20, 2003
    Messages:
    16,763
    Likes Received:
    457
    Trophy Points:
    583
    Location:
    Pennsylvania
    cPanel Access Level:
    Root Administrator
    Twitter:
    Top right corner of this thread is a link to "Watch Thread".
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #6 Infopro, Jan 26, 2018
  7. cPanelMichael

    cPanelMichael Technical Support Community Manager Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    46,390
    Likes Received:
    2,046
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Twitter:
    Hello,

    You can also follow the cPanel 68 Change log at:

    68 Change Log - Change Logs - cPanel Documentation

    Keep in mind cPanel version 68 isn't a LTS (Long Term Support) version, so it becomes end-of-life once cPanel version 70 reaches Stable. cPanel version 70 is tentatively planned for publication to the "Current" build tier this week.

    Thank you.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #7 cPanelMichael, Jan 30, 2018
  8. cPanelMichael

    cPanelMichael Technical Support Community Manager Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    46,390
    Likes Received:
    2,046
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Twitter:
    Hello,

    To update, internal case CPANEL-18074 is now published to cPanel version 68.0.29:

    Fixed case CPANEL-18074: Allow proxy subdomain HTTP DCV to work over nonstandard non-SSL port.

    Thank you.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #8 cPanelMichael, Feb 13, 2018
(You must log in or sign up to post here.)
Loading...
Similar Threads - Auto Validation error
  1. schwartzy18510

    AutoSSL Errors Due to HTTP Redirects in cPanel v68.0 Despite Domain Validation Exclusion Conditions

    schwartzy18510, Feb 3, 2018, in forum: Security
    Replies:
    8
    Views:
    1,367
    cPanelMichael
    Feb 26, 2018
  2. codepoet

    AutoSSL txt validation file not created anymore

    codepoet, Feb 18, 2019, in forum: Security
    Replies:
    3
    Views:
    317
    cPanelMichael
    Mar 1, 2019
  3. billy noah

    AutoSSL HTTP DCV Validation Failing

    billy noah, Sep 19, 2018, in forum: Security
    Replies:
    7
    Views:
    606
    rappie
    Nov 14, 2018
  4. nivekau

    AutoSSL unable to replace certificate - failed domain control validation

    nivekau, May 6, 2018, in forum: Security
    Replies:
    7
    Views:
    840
    cPanelLauren
    May 9, 2018
  5. AngryAlpaca

    AutoSSL did not renew The validation required 1 HTTP redirect

    AngryAlpaca, Mar 9, 2018, in forum: Security
    Replies:
    4
    Views:
    705
    AngryAlpaca
    Mar 9, 2018

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice