Forum

zanga · 08-31-2017, 06:16 AM

Hi,

I tried to set defaults.ing.php

Code:
$config['force_https'] = true;

$config['use_https'] = true;

But unfortunately it's not working, any ideas what else I can use ?

Thanks !

TGates · 08-31-2017, 06:53 AM

The domain you use for roundcube needs to be https... you can't just make roundcube https.

zanga · 08-31-2017, 06:26 PM

Thank you for your reply !
I already set up https on the domain, so I wanted to block the usage if http://ip//etc/apps/webmail/ and automatically force it to https.
My approach might not be the best therefore I am open to suggestions Smile

TGates · 09-01-2017, 04:22 AM

http://forums.sentora.org/showthread.php?tid=1259
Cool

zanga · 09-01-2017, 06:40 PM

Well, I tried that but then when I do https://panel.domain/etc/apps/webmail/ I get 403.
I tried also the /wembmail configuration described here http://forums.sentora.org/showthread.php?tid=495 but with the same results.

Ron-e · (This post was last modified: 09-01-2017, 11:09 PM by Ron-e.)

Let play a game...
Have you read this post?
Or don't you read before you do something?

zanga · 09-01-2017, 11:43 PM

Thank you Ron-e, indeed I didn't read that, will try and get back with the results.

zanga · 09-05-2017, 06:31 AM

Thanks again, it worked with the following configuration:

Code:
</VirtualHost>

# Configuration for WebMail

<VirtualHost *:443>

    ServerAdmin mail@domain.com

    DocumentRoot "/etc/sentora/panel/etc/apps/webmail/"

    php_admin_value suhosin.executor.func.blacklist "passthru, show_source, shell_exec, system, pcntl_exec, popen, pclose, proc_open, proc_nice, proc_terminate, proc_get_status, proc_close, leak, apache_child_terminate, posix_kill, posix_mkfifo, posix_setpgid, posix_setsid, posix_setuid, escapeshellcmd, escapeshellarg, exec"

    ServerName webmail.domain.com

    AddType application/x-httpd-php .php3 .php

    <Directory />

        Options FollowSymLinks Indexes

        AllowOverride All

        Require all granted

    </Directory>

Now this works fine on https://webmail.domain.com, but in http://webmail.domain.com I'm getting redirected to the panel.domain.com, any idea how can I avoid that ?

Also, for the https certificate, should I add the following after the code above?

Code:
SSLEngine on

SSLProtocol ALL -SSLv2 -SSLv3

SSLHonorCipherOrder On

SSLCipherSuite ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS

SSLCertificateFile /etc/letsencrypt/live/webmail.domain.com/cert.pem

SSLCertificateKeyFile /etc/letsencrypt/live/webmail.domain.com/privkey.pem

SSLCertificateChainFile /etc/letsencrypt/live/webmail.domain.com/chain.pem

SSLCompression off

Ron-e · 09-05-2017, 02:31 PM

(09-05-2017, 06:31 AM)zanga Wrote: Now this works fine on https://webmail.domain.com, but in http://webmail.domain.com I'm getting redirected to the panel.domain.com, any idea how can I avoid that ?

Do you want to have both?
Did not test it myself but recenly found this:

Code:
<VirtualHost *:80 *:443>

Or if it does not work at the same with a virtualhost :80.

Or want to block undefined domains/ports at all?
You could try this:
http://forums.sentora.org/showthread.php?tid=1064

zanga · 09-05-2017, 05:15 PM

I wanted to have only https.

I saw also that thread, but any idea how to add exceptions on that block ?

Possibly Related Threads…
Thread	Author	Replies	Views	Last Post
Problem with roundcube	pgh2011	0	2 ,568	01-30-2021, 12:48 AM Last Post: pgh2011
how to update quota in roundcube?	oliviagreene	1	4 ,738	09-18-2019, 11:23 PM Last Post: Ron-e
Roundcube problem	cfreire	7	24 ,919	05-02-2019, 06:59 AM Last Post: jim@jimcorkery.com