Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

SSL Certificate Behavior

Discussion in 'Security' started by dortgendizayn, Mar 2, 2017.

Tags:
  1. dortgendizayn

    dortgendizayn Member

    Joined:
    Mar 2, 2013
    Messages:
    10
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Root Administrator
    Problem is untrusted certificates, first of all browsers don't trust these certificates, second problem is addon domains.
    For example I've 10 domains under an user and think about 3 of them.

    1) abc.com
    2) def.com
    3) xyz.com

    so, when i check abc.com with comodo ssl analyzer it resolves def.com also,
    and if you try to reach def.com event doesn't install ssl it is resolving abc.com and
    i can see abc.com. This is not a problem actually for visitors but google crawling every single pages.

    When i type on google search "site:abc.com"
    i'm seeing results from def.com and https://xyz.com
    beacuse they have same ip address and when google crawl these pages on https
    it is reaching over ip address and getting results from random domain which ssl installed.

    If xyz doesn't exists web site can't reachable but if installed ssl browser resolving ip address
    and get first domains content under xyz.com.

    I hope i can explain what is problem.
     
  2. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    38,658
    Likes Received:
    1,427
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Hello @dortgendizayn,

    I've moved this post to it's own thread.

    Could you let us know of the specific trouble you are facing with the AutoSSL feature? For instance, much of the issues you are facing could be resolved with the use of the cPanel-signed SSL certificates offered through the AutoSSL feature. The self-signed certificates are only installed in cases where a signed certificate isn't already installed on the domain name.

    This is actually one of the reasons for the required self-signed certificates. With a self-signed certificate installed, it prevents the secure URL for a domain name from loading the contents of the first SSL virtual host on the IP address.

    Thank you.
     
  3. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    38,658
    Likes Received:
    1,427
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Hello,

    I'd also like to make note of progress on the following feature request:

    Disable Automatic self-signed SSL

    Feel free to subscribe to the request to see receive updates to the status.

    Thank you.
     
  4. dortgendizayn

    dortgendizayn Member

    Joined:
    Mar 2, 2013
    Messages:
    10
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Root Administrator
    Okay my problem is mainly like this.
    The cpanel ip address is 1.1.1.1
    i have a main domain abc.com which has dedicated ip 1.1.1.2 and has a SSL certificate. this site is working great.
    i have added an addondomain under abc.com/SUBFOLDER as xyz.com
    so when i type xyz.com on browser i can see the content under abc.com/SUBFOLDER as a website.
    Normally xyz.com doesn't have ssl but if i type https://xyz.com it is opening abc.com content.

    I don't want self-signed certificates when every create virtualdomain or create any account.
    I set disable autoSSL feature for every users and please show me the way for
    remove this automaticly generated self-signed certificates.
     
  5. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    38,658
    Likes Received:
    1,427
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    You'd need to install a SSL certificate for xyz.com (or allow AutoSSL to generate one) to address this issue.

    You can browse to "WHM >> Manage SSL Hosts" to remove an existing certificate. The ability to disable the automatic self-signed certificate generation is planned for cPanel 64:

    Disable Automatic self-signed SSL

    Thank you.
     
Loading...

Share This Page