›
secure sentora with https?
|
secure sentora with https?
|
Hi I want to secure the default sentora url with SSL. I have a vhost entry using SSL now, but I want the main panel secured with SSL.
Which config do I edit for that? And where do I put my SSL information in for the panel? Let me know please 
You should do this manually and add it in apache config file.
M B
No support using PM (Auto adding to IGNORE list!), use the forum.
How to ask 200$ free to start your VPS 60 days credit
better you do all the config in another file and include it in apache main config. Don't touche sentora originally configured files.
No support using PM (Auto adding to IGNORE list!), use the forum.
How to ask 200$ free to start your VPS 60 days credit (02-12-2015, 05:21 AM)Me.B Wrote: better you do all the config in another file and include it in apache main config. Don't touche sentora originally configured files. I really don't understand why it has to be so hard to enable SSL for the control panel.. I have to create a default config file? Can't I just set the SSL certificate in the Global Sentora Entry? And change the port to 443? Because when I do put it in there, it works but I get SSL on port 80... any idea?
Me.B. Please let me know how I can enable SSL for my domains, without having them force SSL (redirect port 80 to 443)
And I want to enable SSL for my sentora URL too. Where do I do this, I read the wiki pages but they are not very helpful since they make you end up with ssl working on port 80..
Requirement here.
Having your SSL certificate issued & ok. Basic knowledge over apache admin & conf files. 1. create a new file for panel SSL Setup: /etc/sentora/configs/http-panel-ssl.conf Code: Listen 443you need to replace : ServerName panel.FQDNN with your panel sub domain you had setup. You will notice we need 3 files here for your SSL ( you can change the path if you want): SSLCertificateFile /etc/sentora/configs/ssl/sentora.crt SSLCertificateKeyFile /etc/sentora/configs/ssl/sentora.pem SSLCertificateChainFile /etc/sentora/configs/ssl/sentora.crt Once this config file setup. You can include it in the main apache conf file would be last one after all previous sentora include files. Once you do the setup and add this file your panel can be accessed using 80 & port 443 under HTTPS on the same time. Up to you then using a .htaccess to enforce https or leave it. Would this be ok & clear? M B
No support using PM (Auto adding to IGNORE list!), use the forum.
How to ask 200$ free to start your VPS 60 days credit Thanks given by: Cantalupo
RE: secure sentora with https?
02-12-2015, 08:12 AM
(This post was last modified: 02-12-2015, 08:39 AM by SupaYoshi.)
(02-12-2015, 07:50 AM)Me.B Wrote: Requirement here. I've done everything as you said, works good but now I get 503, Forbidden error when I go to the https website. EDIT: After i removed the Order allow,deny from the config you gave me it works, My config now looks like this exactly the same as the config does for the normal sentura panel. Few changes I made, - Why do you include a file that is in the root directory /etc/sentura/configs/ why not put it next to the other ones? /etc/sentura/configs/apache/ ? I made it include this way. Code: # Include SSL thingy for panel- I do the SSL protocol a little different, I do this, Code: SSLProtocol all -SSLv2 -SSLv3This because SSLv2 and SSLv3 are vulnerable to poodle attacks please edit that. Code: Listen 443
RE: secure sentora with https?
02-12-2015, 08:31 AM
(This post was last modified: 02-12-2015, 08:34 AM by SupaYoshi.)
Okay now this works, I want to enable the same thing for my domain i have in my sentora httpd-vhosts.conf. (i do this with the panel as required)
Just a suggestion would be to do this on default, it is very weird to have non-ssl websites nowdays, especially since google is going to rank websites higher using ssl sooner or later. (rumor) and that this is very hard to setup for each domain that you add and in case you have customers or use this packet for resellers you can't expect them to go through all this trouble. Why doesn't sentora open up port 443 by default?  with self signed certificates at least.Anyway, to continue. I have a domain added to sentura. I go to Control Panel, Module admin, Apache Config, and I go to ovverride a Virtual Host setting. I select the domain I want to overwrite, and I want both port 80 and 443 to work with that domain... The tutorial on this forum expects all traffic to be enabled over SSL. I don't want that, I only want certain urls to be SSL... so I am trying to do a custom entry without changing the normal virtual host one.. is that even possible? So not a override but an addition for ssl?
Ok great ot hear that.
Notice default SSL would require that you have SSL certificates ready and built. Would not be cool to setup SSL with own made SSL as you can see in chrome it will trigger errors and don't think google will rank higher such websites. We will work on improving SSL for sure and trying to find the right balance. MB
No support using PM (Auto adding to IGNORE list!), use the forum.
How to ask 200$ free to start your VPS 60 days credit |
|
« Next Oldest | Next Newest »
|
| Possibly Related Threads… | |||||
| Thread | Author | Replies | Views | Last Post | |
| Is Sentora dead? | rajeevrrs | 2 | 3 ,905 |
12-17-2022, 09:20 AM Last Post: TGates |
|
| Sentora debug and error files | johnnyp | 0 | 1 ,559 |
10-27-2022, 06:16 PM Last Post: johnnyp |
|
| Transfer Account to another Sentora | BenI | 1 | 3 ,289 |
07-21-2022, 07:19 PM Last Post: Nigel |
|
