The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Default SSL host

Discussion in 'Bind / DNS / Nameserver Issues' started by Josh26, Oct 27, 2014.

  1. Josh26

    Josh26 Member

    Joined:
    May 17, 2012
    Messages:
    7
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    DataCenter Provider
    Hi,

    I have an issue involving the use of SSL on a cPanel host.

    Consider a host with the following domains:
    domain1.com
    domain2.com
    domain3.com
    domain4.com

    Now consider that the owners of domain2.com and domain4.com have purchased, installed and configured an SSL certificate for their domains, and both https://domain2.com and https://domain4.com work as desired.

    Unfortunately, this leads to a concern that a member of the public attempting to access https://domain1.com lands on an apparently default SSL server of https://domain2.com. This leads first to a browser SSL security error, followed by being shown a completely different website.

    Is there any available method of setting the "default" to a "domain not found" page or similar? I appreciate you can't do a lot about the SSL error without actually buying a certificate for each domain, but showing the website of someone else is a problem, particularly if it may well end up being a competitor.
     
  2. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,854
    Likes Received:
    676
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
    Hello :)

    If the account is assigned a shared IP address, and a SSL certificate is installed on that IP address, then any secure request to a domain name on that IP address will load the contents of the domain name the certificate is installed for. This is by design. You will need to assign a dedicated IP address to the account that uses the SSL certificate if you don't want that certificate applied to the other domain names on it's IP address. Or, you could generate/install a self-signed certificate for each domain name on the server. You could also make one SSL certificate (e.g. the server hostname) the primary certificate for an IP address via the "Make Primary" option in "WHM Home » SSL/TLS » Manage SSL Hosts".

    Thank you.
     
Loading...

Share This Page