Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

SNI support on centos 5.9

Discussion in 'Security' started by upsforum, Aug 20, 2013.

  1. upsforum

    upsforum Well-Known Member

    Joined:
    Jul 27, 2005
    Messages:
    471
    Likes Received:
    0
    Trophy Points:
    166
    I read on SNI features that centos 6 is required, there are no chances?
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #1 upsforum, Aug 20, 2013
  2. cPanelMichael

    cPanelMichael Technical Support Community Manager
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    45,400
    Likes Received:
    1,952
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Twitter:
    Hello :)

    Yes, that is correct. CentOS 6, RHEL 6, or CloudLinux 6 is required for SNI to function. The version of the OpenSSL library provided on older versions of CentOS/CloudLinux/RHEL does not support SNI.

    Thank you.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #2 cPanelMichael, Aug 20, 2013
  3. upsforum

    upsforum Well-Known Member

    Joined:
    Jul 27, 2005
    Messages:
    471
    Likes Received:
    0
    Trophy Points:
    166
    bad notice for me, I have 6 vps with 400 web sites with centos 5.9
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #3 upsforum, Aug 20, 2013
  4. cPanelMichael

    cPanelMichael Technical Support Community Manager
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    45,400
    Likes Received:
    1,952
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Twitter:
    Keep in mind that SNI is not required. You are welcome to continue using dedicated IP addresses for SSL certificates. Or, you could migrate the accounts to a system that uses an OS that supports SNI.

    Thank you.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #4 cPanelMichael, Aug 20, 2013
  5. upsforum

    upsforum Well-Known Member

    Joined:
    Jul 27, 2005
    Messages:
    471
    Likes Received:
    0
    Trophy Points:
    166
    but in my apache status I see

    Apache server status for vps5.XXXXX.net

    Server Version: Apache/2.2.25 (Unix) mod_ssl/2.2.25 OpenSSL/1.0.1e mod_bwlimited/1.4

    not sufficient?
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #5 upsforum, Aug 20, 2013
  6. upsforum

    upsforum Well-Known Member

    Joined:
    Jul 27, 2005
    Messages:
    471
    Likes Received:
    0
    Trophy Points:
    166
    I compiled openssl 1.0.1e with "enable-tlsext", rebuil apache and now work fine, you can see here: Removed link to third-party URL

    I have only question is problem if primary website not is wildcard cert that i use for hostname of vps? in screenshot you can see that wildcard cert is used con SNI and not is set like primary website but is second cert shared (in second row)
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #6 upsforum, Aug 20, 2013
    Last edited by a moderator: Aug 20, 2013
  7. cPanelMichael

    cPanelMichael Technical Support Community Manager
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    45,400
    Likes Received:
    1,952
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Twitter:
    You are using an unsupported version of OpenSSL for CentOS 5 in regards to cPanel. While you are welcome to attempt to utilize SNI, it's not something we can support until you are using CentOS 6.

    Thank you.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #7 cPanelMichael, Aug 20, 2013
  8. cPanelMichael

    cPanelMichael Technical Support Community Manager
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    45,400
    Likes Received:
    1,952
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Twitter:
    That just means the hostname of that certificate is not created directly as an account or domain name on the server.

    Thank you.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #8 cPanelMichael, Aug 20, 2013
(You must log in or sign up to post here.)
Loading...
Similar Threads - support centos
  1. Michael-Inet

    What non-systemd OS will cPanel/WHM support after CentOS 6 goes EOL?

    Michael-Inet, Nov 20, 2018, in forum: General Discussion
    Replies:
    7
    Views:
    125
    Michael-Inet
    Nov 21, 2018
  2. KV Karia

    Does cPanel hardened kernel supports centOS 7 64bit

    KV Karia, Aug 22, 2017, in forum: Security
    Replies:
    5
    Views:
    630
    cPanelMichael
    Aug 31, 2017
  3. Sarath Kumar R

    Is SNI supported on CentOS 7?

    Sarath Kumar R, Feb 23, 2017, in forum: Security
    Replies:
    3
    Views:
    1,316
    Infopro
    Feb 24, 2017
  4. Michael Legg

    Can't Lodge Support Ticket

    Michael Legg, Nov 20, 2018, in forum: General Discussion
    Replies:
    1
    Views:
    47
    cPanelLauren
    Nov 20, 2018
  5. zTurko

    Does cPanel Support MySQL 8?

    zTurko, Oct 25, 2018, in forum: Database Discussion
    Replies:
    1
    Views:
    215
    cPanelMichael
    Oct 25, 2018

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice