Removal of SSL Sharing Question

blipper

Active Member
Jan 27, 2010
25
0
51
Question, I see in version 76:
Removal of SSL Sharing
In cPanel & WHM version 76, we removed the ability to share SSL certificates.


I have several clients that use my main shared SSL, https://MyServer.com/~ClientName for certain function on their site.

Will removal of the SSL sharing break these clients? Or is this referring to something else?
 

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,910
2,213
363
Hello @blipper,

The intent of the change is to remove the SSL sharing functionality completely. Can you provide some more information on how that link is utilized on the websites? Also, is there anything in-particular that's keeping you from using the AutoSSL feature? It will issue free signed SSL certificates for individual domain names.

Thank you.
 

blipper

Active Member
Jan 27, 2010
25
0
51
We have a number of very old accounts, 10-15+ years that all have a rudimentary custom shopping carts made from html. Customer clicks on "order now" and it directs them to forms at https://MyServer.com/~ClientName - In the old days, SSL was quite expensive and shopping cart technology not as widely available.

The right thing to do would be to go to domain specific ssl, but that would require significant coding changes on this side which we don't really want to do, and our clients won't pay for it. Many of my "legacy" clients are seniors, have very little technical knowledge, and don't understand the need to upgrade or change, especially when things are currently working, so why change?

I hope that help with context.
 

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,910
2,213
363
Hello @blipper,

While it's not recommended, you can still technically make use of a URL like the following as long as you've enabled Mod_Userdir and the SSL certificate for the hostname shows as installed in WHM >> Manage SSL:

Code:
https://server.host.tld/~username/
The right thing to do would be to go to domain specific ssl, but that would require significant coding changes on this side which we don't really want to do, and our clients won't pay for it.
With AutoSSL, the domains would all automatically have signed SSL certificates installed. At that point, you could write a bash script that finds all uses of "server.host.tld" in website files and replaces it with the valid domain name. EX:

Code:
grep -r "server.host.tld" /home
If there are too many files to manually edit, then you could incorporate a "replace" command in your bash script that detects the domain name based on the document root and replaces "server.host.tld" with "correct-domain.tld".

Thank you.