How To Enable SSL 3.0 In WHM/cPanel
My becky email client don't work with SSL 3.0 (POP3s).
by the way, when use SSL 2.0, it still can't verify certificate. I install StartCOM Free SSL successfully with every services (vps.domain.com)
View Complete Thread with Replies
Related Forum Messages:
Configuring SSL With CPanel/WHM
I have got a WHM Reseller Account, with a Dedicated IP address and RapidSSL Certificate.
My host has setup the SSL for me, and it works fine when I access [url](where main-domain.com is the Domain associated with my WHM account).
However when I try and access https on any Account which I've made under my Reseller Account, I'm just redirected back to [url]
I was under the impression that if I accessed a Domain on an account I made that shares the same IP as my SSL Certificate, that the SSL Certificate would appear for that Domain name too, but this isn't the case.
Is there any change the my DNS records, or something I can ask my host to do to get it to work?
WHM/Cpanel Block All Non Ssl Logins
We are being required to turn off all non-ssl logins to our server. I have turned on ssl redirection, but that only works when access by domain.
if a user types in the direct port number either http://domain.com:2086
they can still get access to the non-ssl login page.
I need to be able to disable all port access to non-ssl login pages for ports 2086,2082 and 2095.
My servers are running CSF+LFD and i have tried removing the ports from the configuration, but i still can gain access.
SSL Email And SMTP Error - WHM/cPanel - Retail Host Certificate
We have a few users that use SSL email and we decided to purchase a cheap single-root SSL cert over at namecheap for the host name so that it would end the "self-signed cert" whining.
We got the cert installed and it works great for WHM/cPanel and also works for SSL over IMAP and POP3, but the very first email anyone sends (SMTP) per day gives this warning (Outlook Express):
The server you are connected to is using a security certificate that could not be verified.
A certificate chain processed, but terminated in a root certificate which is not trusted by the trust provider.
It seems obvious that the cert used by the SMTP system is not the new one we installed.
We used WHM's SSL/TLS -> Change Server Certificates link to install the cert.
We then made sure that:
...all contained the current cert or key as appropriate.
Just for grins, we even made sure:
...had the correct pair.
We restarted all the mail services and even restarted the whole server. (I know...Windows reaction...bad tech.)
Does anyone know of a stealth location where the SSL cert for SMTP should be updated?
WHM 10.8.0 cPanel 10.9.0-R139
CentOS 3.8 i686 - WHM X v3.1.0
SSL - Modulus Mismatch Error In WHM
I'm having trouble getting an SSL certificate setup on a domain through WHM. I was originally getting a "Modulus mismatch, key file does not match certificate." error. I contacted RapidSSL and they had me generate a new CSR for the domain and forwarded a new cert. I'm still getting the same error, which makes me think it's a server-side issue.
I have checked and re-checked the cert text to make sure I'm not putting in any extra whitespaces or anything. I know the cert must be somewhat valid because when I put it into WHM and click outside the cert box it automatically pulls up what account it is for (domain, username, ip).
Does anyone know what would cause this?
Question: How To Enable Cpabel Access With Domain.com/cpanel Extension In Vps Hosting
I have migrated my accounts from resller account of site5 to vps account to wiredtree...
But I have a problem now. In site5, when I use their reseller option each domain owner could access their cpannel simply by http://www.pr.web.tr/cpanel and other user also can access http://url.gen.tr/cpanel etc... the good thing if the owner is the same, he/she can use both account in the same browser in different tabs and even browsers can sace the password to reach those accounts seperately...
but in vps account in wiredtree, when user try to access http://www.pr.web.tr/cpanel the server redirects it https://host.ucuzhosting.net:2083 so it doesnt matter which domain he/she tried to connects, the server redirects them to this domain... so:
it is not possible to access the ditterent cpanels at the same time using same tabbed browser anymore.
the passowrd can not be stored on browsers either, since there isn't any domain... only the resller account panel here. so for each new domain cpanel access the password keepers only update the new password...
There must be someway to configure the access of each domains cpanel throeugh their own domain name... but couldnt figure it out...
SSL With CPanel
I'm having big trouble trying to update an SSL certificate with cPanel.
I'm such a dummy that I've ended up buying 2 SSL certificates to see if that may fix it.
I now have 1 certificate for www.mydomainname.com and 1 for just mydomainname.com
I have logged into the account in cpanel and uploaded both certificates and when I view them in Security -> SSL/TLS manager -> Certificates They both display the correct host, correct issuer, and correct expire date.
But when I try to visit my site using https I get:
The certificate expired on 4/8/2008 7:59 PM.
(Error code: sec_error_unknown_issuer)
CPanel And SSL Certificates
I am continuously getting this error message in my error_logs
Invalid method in request x16x03x01
I searched and found out that it is something to do with httpd.conf configurations and SSL. So I asked my provider to check it and solve. First they acknowledge that it was SSL issue but later I was told
Since cPanel controls how the virtualhosts are configured this error most likely cannot be fix since cPanel will just revert the change. ..... The SSL connection with the selfsigned cert works beyond kicking out the error, but again cPanel controls the httpd.conf and how the * virtualhosts are configured.
So my question is, Is it common to have this error message with a cPanel VPS?
Is there any solution?
I think I hit this error every time when I login to WHM or cPanel of every domain.
Should this be fixed or it's not exactly an issue.
Cpanel And Wildcard Ssl
Now that I have relieved a lot of frustration I can talk about my issue. We have a cpanel server and are trying to install a wildcard ssl certificate on it. As you could tell from above its not working out so well.
The cert was ordered an installed as *.domain.com . It works great on https://domain.com and [url]
However, when I do [url]its an epic fail. Its a seperate cpanel account even with its own dedicated IP address. I look in the httpd.conf file and see the :80 entry however, I need to add a :443 entry in a way that cpanel/whm will not change it next time i add an account.
When I try to install the SSL certificate in WHM on jeff.domain.com it tells me the domain does not match. So I am asking how do I get this to work? I have searched for quite a while on the net and have not come across anything that works.
CPanel, Stunnel, And SSL
I have cpanel VPS and I have to pass PCI (credit card compliance).
SSL v2 is considered a vulnerability and have to be disabled, so only SSL3/TLS1 are supported.
I have no problem disabling it in Apache (port 443) by adding line to httpd.conf:
SSLProtocol all -SSLv2
Obviously, it doesn't work for other non-apache ports.
I found how to plug port 25 (Postfix).
But I have no idea how to plug cpanel/WHM ports 2087 and so on.
After some research I found that stunnel is used to create secure connection via port 2087. I closed insecure port 2086, so only [url] is used to access WHM
I read stunnel documentation and found that:
options=NO_SSLv2 placed in stunnel.conf disables SSL v2.
I added this line to the stunnel.conf used by cpanel. I know it's right file because then I made a type, cpanel couldn't load ssl.
Unfortunately, it didn't work. Nmap or simple openssl connection show SSL v2 enable on port 2087.
So, my questions:
1) What did I do wrong? Or it's something specific to cPanel. I don't think so, since according to cpanel startup script it just starts stunnel. If stunnel isn't loaded, I can't use 2087
2) How else I can fix it? Few people on internet mentioned disabling SSL2 during openssl build time but I couldn't find how to do it. I don't really want to mess with source code
3) Any other ideas? Make Apache/mod_ssl somehow listen to this port 2087 and redirect it to 2086?
My hosting support while being very responsive and quick couldn't help me. I found it strange, since it's a very large provider (no names) and it must be ecommerce sites hosted. They told me Cpanel can't be compliant with PCI. I don't really believe since cpanel is nothing more that bunch of control scripts used only for site management
WHM / Cpanel
hosting whm/cpanel and i've just created a new account and everything works fine:
Great Success !
Apache is working on your cPanel® and WHM™ Server
I have an issue though, when I try to login via cpanel i just get a blank page, and when i try to login via FTP i get a blank directory with no folders.
Am i missing something that i've forgot to setup through WHM?
Update CPanel SSL Certificate
i am trying to update the self signed certificate that comes with cPanel but cannot do it. When i go to "Install a SSL Certificate and Setup the Domain" and enter the ssl information and click submit, i get the following error:
Installing SSL Certificate
The specified domain is not configured on the system.
The specified domain is not configured on the system.
SSL Install aborted due to error.
the domain is a subdomain and it shows the subdomain is installed with *cpanel, *whm, *webmail when i goto Account Information -> List Subdomains
currently using WHM 11.23.2 cPanel 11.23.6-R27698
SSL - CA Bundle Won't Install In CPanel
Has anybody ever had this error in CPanel 11 SSL Manager? How did you solve it? We used the CA Bundle supplied by Comodo. We tried installing SSL with Comodo and the CA Bundle isn't installing at all. Is this an issue with the server?
The CRT itself installs fine so it looks OK from web browsers - but not Google Checkout.
Error in CPanel:
Verifcation Result [/C=US/ST=UT/L=Salt Lake City/O=The USERTRUST Network/OU=[url] error 2 at 3 depth lookup:unable to get issuer certificate]
As a result, Google Checkout refuses to calculate shipping:
SSL certificate problem, verify that the CA cert is OK. Details:
error:14090086: SSL routines: func(144): reason(134)
I tried manually with curl (Google Checkout uses curl) and it says:
~: curl [url]
curl: (60) SSL certificate problem, verify that the CA cert is OK. Details:
error:14090086SL routinesSL3_GET_SERVER_CERTIFICATE:certificate verify failed
I want to disable WHM/Cpanel.because client purchase dedicate server from us and he want to access from command line and no WHM/Cpanel so how can i do it and it will be effect on any service because i have installed all the service like dns, exim and http from WHM.
New Server With WHM/cPanel
I'm holding a dedicated server on my own and have about 6 sites to transfer to that server, some sites get heavy traffic (8k uniques per day)
what is more effective (since im the only one using the server anyway) creating one cpanel account and hosting all the domains under additional domains on that account with unlimited resources or creating a new cpanel account for each domain?
Danger On WHM / CPANEL
i have dedicated server
all thing is normal
but from 2 dayes there are an danger thisn happen
whilt enter to cpanel or WHM
this messages appear
and then redirect me to
why this error appear as sudden and how i resolve it?
My question may be simple to some but I have no idea on how to do it and dont want to cause server crash....
I have been offered part share in a server and the whm/Cpanel software is already there.
I dont want my customers details being shared wth the other party. Is there anyway I can set the whm/Cpanel software with root access so we can both use it but each others accounts are private.
Login To Whm Or Cpanel
i have a problem with my box .. after i reboot the server the login to whm or cpanel didn't work ... everytime i must use this command
then the logins work successfully
so .. what's the problem with the iptables with me?
I have a reseller account with site5. The last months the service has been horrible, sites down, dns down etc.. and the people there dont do a thing..
so i want to change to something else. I assume that VPS+whm+cpanel will give me something similar.
Which vps hosts are good? and which packages can you offer me? I'm paying about 19 usd a month now.
Login To Cpanel And WHM
I have someone on my server that is having problems login to Cpanel and WHM.
They can view all websites on the server even theirs, but they cannot login.
They keep getting: Firefox cannot establish a connection with the server.
Even in IE they get a error message.
They even tried with "theirdomain.com/cpanel" and got the same thing.
They are using a rounter also, so I told them to try unhooking that, but my main question is, it doesn't seem that their IP is blocked as I checked, so is there anything else on the server that could cause this or is it something on their end?
Can't Login CPanel/WHM
I've unmanaged server, everything running well
but I can't login into cpanel/whm I tried :
when I try to login the [The connection was reset]Firefox msg.
I can login through ssh,and i tried to restart cpanel service and I update it...
Can Not Connect To Whm Cpanel
i runnig backup, after runing backup, i can not connect to whm cpanel
show this error:
In order to access the interface, you will need to make sure that the software license on this server is active and installed.
Your license could not be activated because:
Cannot Read License File
New CPanel/WHM Warning
first time I discovered the issue and I am not happy about it at all.
I was moving three of my largest sites over to a new server after performing a full cPanel backup of them completly and then FTP'ed the backups over and restored them in WHM on a new server; however, NONE of the MySQL data was saved. Now at this point I was not really worried because I knew I had weekly and daily backups so at most I was going to lose 1 month of SQL.
come to find out, NONE of the weekly or daily backups had the SQL eaither despite the fact that they are instructed to backup everyting. This leaves me with only three month old backups for these huge websites that are getting 2million+ hits a day.
Basically, I'm done.
I relied on cPanel/WHM to perform full backups which it did not. I followed all the procedures about having backups offi site and whatnot, but NONE of them have the SQL.
I am very upset, perturbed, and disappointed with the new cPanel/WHM and never should have upgraded.
I suggest anyone using it to do your own backups and do not rely on cPanel/WHM despite how tempting it may be.
my one mistake was to delete the websites off the server before they were fully restored (just so I would not have to turn off DNS clustering and whatnot). I should have checked if they were up working on the server before I deleted them off the old one. (Although I kept all the backups so I figured that would be enough).
Java 1.5 On Cpanel/WHM
Is there any simple way to update the Java SDK to 1.5? I currently seem to have 1.4x. I have a very typical Cent OS 4, Cpanel/WHM box. I need this to run the Caucho Resin server, so if there's any advice on getting that working, that'd be lovely too!
How To Stop Using WHM/Cpanel
I have my own server which I use for my own websites.
I use the following features of WHM -
Creating "packages" for my accounts
...and possibly one or two other items once or twice a year.
I use the following features in Cpanel -
Adding e-mail accounts
...and possibly one or two other items once or twice a year.
I'd like to break the (small) WHM/Cpanel habit I have and do all of the above via the command line.
Is this a big task?
Where should I start?
WHM / Cpanel Optimization
anyone have any tips on how to optimize WHM / cpanel to run at top performance on 256-512mb guaranteed VPS accounts?
I've had several VPS providers in the past, and each one of them run webpages and LAMP stuff fine, but as soon as I bring up cpanel /whm, it either crashes the VPS altogether, or cpanel and whm run very slow, choppy, pretty much bogging the whole VPS down, doesn't seem to matter if the VPS is running on 256 or 512, still same issues. I run on Virtuozzo, which I don't know if thats part of the problem, or not,
really all I use out of cpanel/ WHM is the standard things like
basically what a reseller would use. the rest of the stuff I do not use, so I was just wondering if there was a tutorial on how to strip down WHM / cpanel somehow so it would run better on VPS accounts? or if someone could write one up perhaps?
How To Protect Cpanel And Whm
what is the best way to protect whm and cpanel from unwanted login?
If i change the port they still can sniff, is there away to put another layer to protect it or assigned specific ip to be able to login ? I'm on a dedicate server and only hosting for 1 site so there no customer that i should worry about.
can i change /whm and /cpanel to something else just to hide it form novice users.
SSL Certificate Inside Cpanel Expired
I connect to my email on my dedicated cpanel/whm server by TLS/SSL (similar to instructions here: [url]..same ports, etc.)
Today I login & get a "This server's certificate expired"
But it didn't. I purchased a NEW one June 1st. Why is thunderbird grabbing my old ssl cert? The website's https:// works perfectly.
I also checked the server ssl self-signed certs and all are up to date.
How To Set Up An Ssl For Ftp Webmail Cpanel Etc
Im trying to set up an ssl for use on ftp webmail and cpanel etc I have the instructions that i put together a while back
but what i left out was what about the IP its shared and when i try to install the certificate it says i need a dedicated IP.
I dont want to use a self signed certificate as my clients freak out at the window that pops up saying its unsafe
I am missing something or is it too early in the morning, because i know I have done this before
How To Move SSL Certificate From Cpanel To IIS
I have a certificate generated in cpanel (whm), I have all the necessary keys (RSA, CSR, CRT + I bought rapidssl cert. according to these values), but I would like to use the certificate within IIS.
Does anyone know, how to import these keys properly into IIS (Windows 2003 Server x64)?
As IIS stores the private key somehow in the registry, I do not know how to proceed.
Ticket System And WHM And Cpanel
I have VPS having whm/cpanel base, i also install RT ticket system, it install successfully, same way i did on 5 other server its ok, but on VPS due to apache different configuration it gives me.
You haven't yet configured your webserver to run RT. You appear to have installed RT's web interface correctly, but haven't yet configured your web server to "run" the RT server which powers the web interface. The next step is to edit your webserver's configuration file to instruct it to use RT's mod_perl, FastCGI or SpeedyCGI handler.
Backup In CPanel/WHM Without Mysql
The automatic backups you can setup in cpanel/whm bundle the entire user account. Is it possible for it to save everything except the mysql databases?
I have an account that has databases over 5GB+ and would like to handle backing those up separately.
Getting More Out Of LogWatch On A CPanel/WHM Server
I was searching for something else the other day and came across this (search for LogWatch on the page).
It changes the default paths for some of the log files so that they work on a cPanel/WHM server.
This will give you more reports in your daily LogWatch email - specifically, it adds exim, apache, courier and PureFTP logs.
Most tutorials only show you how to change the detail level or the email address in logwatch.conf.
So, I thought I'd share this piece of information.
I found that a few changes were necessary for my system.
So, I'll give all the steps I followed below:
1) After you have installed LogWatch, change the following in /usr/share/logwatch/default.conf/logwatch.conf :
Detail = High
MailTo = <your email address>
You can use Detail = Med if you want to reduce the details you get.
2) Add the following to /etc/logwatch/conf/override.conf (you may have to create the file):
logfiles/exim: LogFile = exim_mainlog
logfiles/http: LogFile = /usr/local/apache/logs/access_log
services/pop3: *OnlyService = cpanelpop
services/pop3: *RemoveHeaders = 1
services/pureftpd: LogFile = messages
services/pureftpd: $show_logins = 1
services/pureftpd: $show_logouts = 1
services/pureftpd: $show_new_connections = 1
So, if you are not bored reading LogWatch's daily logs and would like to increase your workload, you now know how to
How have you configured your LogWatch installation ? Or do you use something other than LogWatch?
CPanel WHM Password Reset
restore a VPS onto a different server due to a hardware failure. The new VPS is up and running and I can apache is displaying the cPanel WHM login panel ok. So I know the VPS is fine.
However, my WHM username/password are no longer working.
What options do I have resetting the password for the WHM? I have full access to the shell of the VPS (root access).
How To Protect Access To Whm/cpanel
is there a way to protect whm/cpanel access?
At the moment anyone can type
domain.com/cpanel or domain.com/whm or server/cpanel or server/whm.
I would like to limit access to these pages by adding additional password (like folder password) or restricting IP.