The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Redirecting to unprotected url

Discussion in 'General Discussion' started by its_joy, Jun 20, 2008.

  1. its_joy

    its_joy Well-Known Member

    Joined:
    Dec 29, 2007
    Messages:
    54
    Likes Received:
    0
    Trophy Points:
    6
  2. thewebhosting

    thewebhosting Well-Known Member

    Joined:
    May 9, 2008
    Messages:
    1,201
    Likes Received:
    1
    Trophy Points:
    38
    Are you getting this error for particular one domain or all the domains belongs to your server are facing the same kind of issues?
     
  3. its_joy

    its_joy Well-Known Member

    Joined:
    Dec 29, 2007
    Messages:
    54
    Likes Received:
    0
    Trophy Points:
    6
    Hello

    We are getting this error for all the domains on our server

    Regards!
    Its_joy
     
  4. cPanelDavidG

    cPanelDavidG Technical Product Specialist

    Joined:
    Nov 29, 2006
    Messages:
    11,279
    Likes Received:
    8
    Trophy Points:
    38
    Location:
    Houston, TX
    cPanel Access Level:
    Root Administrator
    I know we recently did an update to 11.23 to resolve these issues. Try updating cPanel and see if this issue persists.
     
  5. jdlightsey

    jdlightsey Perl Developer III
    Staff Member

    Joined:
    Mar 6, 2007
    Messages:
    126
    Likes Received:
    2
    Trophy Points:
    18
    Location:
    Houston Texas
    cPanel Access Level:
    Root Administrator
    The http://www.domain.com:2082/unprotected/redirect.html is an iframe that attempts to meta-refresh the browser into http://www.domain.com:2082/. If that fails the browser will try to load http://cpanel.domain.com.

    The /unprotected/redirect.html URL doesn't really have anything to do with the security of the connection itself. Files in /unprotected/ are served by cpsrvd without requiring a login (which is essential to get the iframe before a login takes place.)

    If you'd rather that http://domain.com/cpanel sends users to https://www.domain.com:2083 you need to turn on the relevant option in TweakSettings ... "Always redirect users to the ssl/tls ports when visiting /cpanel, /webmail, etc."

    Whether or not SSL is used with the secondary redirect to http://cpanel.domain.com depends on the existence of a SSL VirtualHost on the same IP address.

    This secondary redirect is only attempted if Proxy VirtualHost support is enabled in TweakSettings. When Proxy VirtualHosts are not enabled, the /cpanel redirect script will just issue a HTTP redirect as it did in the past without any iframe/javascript/etc.

    There are a few fixes related to this flow of redirect logic that are currently only in Edge, but they should be in the other 11.23 branches soon.
     
  6. BigLebowski

    BigLebowski Well-Known Member

    Joined:
    Dec 24, 2007
    Messages:
    75
    Likes Received:
    0
    Trophy Points:
    6
    "Detecting your internet connection..."

    Hi there

    All users on one server are seeing this message. Many have called thinking the server hacked. Is there any way to brand this page so it looks more genuine? I am running on:

    WHM 11.23.2 cPanel 11.23.3-R25946
    TRUSTIX Enterprise 2 i686 on standard - WHM X v3.1.0

    Please could you confirm that the page was produced by Cpanel (ie has not been placed by hackers) and how to proceed to remove it?

    Thanks
    Dude
     
  7. cPanelDavidG

    cPanelDavidG Technical Product Specialist

    Joined:
    Nov 29, 2006
    Messages:
    11,279
    Likes Received:
    8
    Trophy Points:
    38
    Location:
    Houston, TX
    cPanel Access Level:
    Root Administrator
    This page is placed there by cPanel/WHM and is described in the post immediately above yours.
     
  8. webstyler

    webstyler Well-Known Member

    Joined:
    Nov 20, 2003
    Messages:
    432
    Likes Received:
    0
    Trophy Points:
    16
    Hello

    If I have read right the page "detecting your internet connection" is already useful where user in under firewall or other system that filter port.. right ?

    Is possible to switch off the page "detecting your.." ?

    Thanks
     
  9. cPanelDavidG

    cPanelDavidG Technical Product Specialist

    Joined:
    Nov 29, 2006
    Messages:
    11,279
    Likes Received:
    8
    Trophy Points:
    38
    Location:
    Houston, TX
    cPanel Access Level:
    Root Administrator
    The purpose of the page is to attempt to connect the user to port 2082. If that does not work (presumably because their firewall blocks port 2082), then they are routed through the reverse proxy to view cPanel over port 80 automatically. This allows example.com/cpanel to serve those both behind a firewall as those not behind such an aggressively configured firewall.
     
  10. webstyler

    webstyler Well-Known Member

    Joined:
    Nov 20, 2003
    Messages:
    432
    Likes Received:
    0
    Trophy Points:
    16
    ok :)

    it's a way to disable this ?

    Thanks
     
  11. jdlightsey

    jdlightsey Perl Developer III
    Staff Member

    Joined:
    Mar 6, 2007
    Messages:
    126
    Likes Received:
    2
    Trophy Points:
    18
    Location:
    Houston Texas
    cPanel Access Level:
    Root Administrator
    Yes, turn off proxydomains in TweakSettings.
     
  12. webstyler

    webstyler Well-Known Member

    Joined:
    Nov 20, 2003
    Messages:
    432
    Likes Received:
    0
    Trophy Points:
    16
    I have disable this

    Automatically create cpanel, webmail, webdisk and whm proxy subdomain DNS entries for new accounts. When this is initially enabled it will add appropriate proxy subdomain DNS entries to all existing accounts. (Use /scripts/proxydomains to reconfigure the DNS entries manually)

    But when go to http://www.mysite.com/webmail (that i redirect to https) appear page "Detecting your internet connection ..."

    :/
     
  13. myusername

    myusername Well-Known Member
    PartnerNOC

    Joined:
    Mar 6, 2003
    Messages:
    691
    Likes Received:
    1
    Trophy Points:
    18
    Location:
    chown -R us.*yourbase*
    cPanel Access Level:
    DataCenter Provider
    Twitter:
    Why not direct everyone via reverse proxy instead of using 2082? That eliminates the firewall issue...

    Question 2 that BigLebowski asked above, please brand this page or at the very least use some cPanel color schemes. Seafoam Green does not resemble cPanel at all and its causing a lot of tickets I feel would be avoided if it at least looked like it was supposed to be part of cpanel's login system.
     

    Attached Files:

  14. lutronik

    lutronik Member

    Joined:
    Jul 15, 2003
    Messages:
    7
    Likes Received:
    0
    Trophy Points:
    1
    In my cPanel this beginning to happen today.. just in 1 server this happens..

    The cpanel needs to correct this!! I was afraid this morning when I saw this!! :)


    []'s Luiz Passarelli
     
  15. cPanelDavidG

    cPanelDavidG Technical Product Specialist

    Joined:
    Nov 29, 2006
    Messages:
    11,279
    Likes Received:
    8
    Trophy Points:
    38
    Location:
    Houston, TX
    cPanel Access Level:
    Root Administrator
    Because only ~95% of functionality works behind the reverse proxy. If you want full 100% functionality, it's best to still use port 2083 (or 2082 for those on plain-text connections)
     
  16. mtbwacko

    mtbwacko Well-Known Member

    Joined:
    Nov 30, 2004
    Messages:
    54
    Likes Received:
    0
    Trophy Points:
    6
    I'm getting tickets today regarding this problem but with the webmail redirect. The new "Detecting Connection" page that asks if there is a firewall that blocks 2095 showed up for the first time last week and the redirect worked until today. Now it does not. It's routing to webmail.domain.com but I get a browser error that it can't find the server at webmail.domain.com. Does anyone have a solution to this?

    Also, this new intermediary "Detecting Connection" looks really bad. It doesn't even look like a cPanel screen and gives the impression of a possible hack.

    mtbwacko
     
  17. MaraBlue

    MaraBlue Well-Known Member

    Joined:
    May 3, 2005
    Messages:
    335
    Likes Received:
    2
    Trophy Points:
    18
    Location:
    Carmichael, CA
    cPanel Access Level:
    Root Administrator
    Agreed, seconded, and otherwise amen.
     
  18. webstyler

    webstyler Well-Known Member

    Joined:
    Nov 20, 2003
    Messages:
    432
    Likes Received:
    0
    Trophy Points:
    16
    Here not possible do disable .. ??
     
  19. deddy

    deddy Well-Known Member

    Joined:
    Oct 13, 2003
    Messages:
    131
    Likes Received:
    0
    Trophy Points:
    16
    It should be possible to disable those redirect messages.

    With all respect such messages are nonsense and confusing
    customers.
     
  20. codegirl42

    codegirl42 Well-Known Member

    Joined:
    Mar 9, 2006
    Messages:
    93
    Likes Received:
    0
    Trophy Points:
    6

    Agreed....*sigh*
     
Loading...

Share This Page