Results 1 to 21 of 21
Thread: Secure Login's to CPanel???
-
07-07-2002, 05:01 PM #1Newbie
- Join Date
- Mar 2002
- Location
- illinois
- Posts
- 29
Secure Login's to CPanel???
Do many hosts provide secure SSL login to Cpanel to protect user name and password?
Is it something that's hard to set up?
-
07-07-2002, 05:09 PM #2Web Hosting Master
- Join Date
- Dec 2001
- Location
- Netherlands
- Posts
- 849
https://yourdomain.com:2083/
https://yourdomain.com:2087/
:2082 and :2086 are insecure
:2083 and :2087 are secure
.
# experienced Cloud/OpenStack Architect
#
# Feel free to PM me for any info or help to build your cloud.
-
07-11-2002, 03:09 AM #3Newbie
- Join Date
- Nov 2001
- Location
- USA
- Posts
- 27
I am sorry to inform you but 2083 and 2087 are not secure either.
Originally posted by admin0
https://yourdomain.com:2083/
https://yourdomain.com:2087/
:2082 and :2086 are insecure
:2083 and :2087 are secure
www.tys.us
12 Years Webhosting / Servers
100% Power Uptime 99.999% Network
Colocation / Dedicated / Managed
-
07-11-2002, 03:18 AM #4Junior Guru
- Join Date
- Jun 2002
- Location
- Chicago
- Posts
- 191
2083 and 2087 are 2082 and 2086 wrapped in stunnel....
albeit not 100% rock solid impenetrable, but pretty freaking solid considering.
What do you mean exactly, not secure?
-
07-11-2002, 06:30 AM #5Web Hosting Master
- Join Date
- Dec 2001
- Location
- Netherlands
- Posts
- 849
huh?
i always considered ssh and https:// secure
???
please shed some light!
.
# experienced Cloud/OpenStack Architect
#
# Feel free to PM me for any info or help to build your cloud.
-
07-11-2002, 05:03 PM #6Web Hosting Master
- Join Date
- Jun 2002
- Location
- Arabia
- Posts
- 678
Acording to cPanel.net https and 2087 are secure. I have never heard othewise - anyone know something they don't?
-
07-11-2002, 05:13 PM #7Junior Guru
- Join Date
- Jun 2002
- Location
- Chicago
- Posts
- 191
2083 and 2087 are https:// , yes
I think what the dude meant above is that the connection isn't backed by a real deal certificate-- you'd have to by an ssl cert for the hostname of each box if you didn't want the annoying browser error saying "not a valid certificate authority" , etc.
But that doesn't mean the handshake and transmission isn't via ssl- it still is very much secured.
-
07-11-2002, 05:14 PM #8Web Hosting Master
- Join Date
- Dec 2001
- Location
- Netherlands
- Posts
- 849
.
# experienced Cloud/OpenStack Architect
#
# Feel free to PM me for any info or help to build your cloud.
-
07-12-2002, 08:49 AM #9Web Hosting Master
- Join Date
- Apr 2002
- Location
- Auckland - New Zealand
- Posts
- 1,575
:2083 :2087
Yes, the connection is still encrypted through port 443 but your web browser will cry if the site name does not match the cert and says the cert is not trusted...... no biggie, and still secure.
-
07-12-2002, 07:28 PM #10Newbie
- Join Date
- May 2001
- Posts
- 18
okay, here's the easy way...
Forget the ports, you're just going to confuse your users if you tell them to use them. But fortunately the guys at Cpanel have implemented another way to access the CPanel via SSL. I don't know if it is documented, but I found it by digging through httpd.conf.
Just use http://yourdomain.com/securecontrolpanel
Enjoy!
-
07-12-2002, 07:45 PM #11Web Hosting Master
- Join Date
- Mar 2001
- Location
- Downunder..
- Posts
- 2,612
-
07-12-2002, 08:06 PM #12Junior Guru Wannabe
- Join Date
- Jul 2002
- Posts
- 57
cannon7 it's really working! Thanks
-
07-12-2002, 08:08 PM #13Web Hosting Master
- Join Date
- Apr 2002
- Location
- Here?
- Posts
- 2,560
Thanks Cannon7! Works great.
-
07-12-2002, 08:22 PM #14Web Hosting Evangelist
- Join Date
- May 2002
- Location
- Durham - UK
- Posts
- 450
They are secure ports from which cpanel can be accessed - whats there to agrue about? a facts a fact
Barry
UK Based Freelance PHP Developer
PHP/SQL/Ajax/HTML5 - Contact for Quote
-
07-14-2002, 04:40 AM #15Eternal Member
- Join Date
- Sep 2000
- Posts
- 851
Originally posted by TYS
I am sorry to inform you but 2083 and 2087 are not secure either.
Also, with regard to the browser warning, you can actually use WHM to configure ports 2083 and 2087 to use your server's SSL certificate--if you have one.
So you have a certificate for servername.yourdomain.com... you can use that certificate not only on port 443 for serving HTTP securely, you can also have the same certificate running on the control panel's SSL ports at the same time. There is an option in WHM to do this pretty quickly and easily: the "Change cPanel/WHM Certificate" link under the SSL/TLS menu in WHM.Matt Lightner - http://www.mattlightner.com/
- First initial to the last name at the mail service provided by the world's largest search engine
- Founder and CEO (Former) Site5.com, sold in 2008
- Really honestly wants to be a good WHT citizen but can never remember all the correct etiquette. Mods, sorry in advance
-
07-14-2002, 05:22 AM #16Web Hosting Master
- Join Date
- Jun 2002
- Location
- Arabia
- Posts
- 678
Thanks cannon7!!
My home ISP refuses https - so I "had" to use a crapo and much more expensive one - no more
-
07-15-2002, 02:16 PM #17Disabled
- Join Date
- May 2001
- Location
- Fresno, Ca.
- Posts
- 181
Yes, it's secure on those ports with the tunneling. But cPanel is much slower and has a large delay finishing the page load. You may see complaints.
If you watch the progress bar in your web browser you will see the large delay in finishing the page load. The page will be displayed but it will not finish for a few seconds after that.
I have tested this on hosts all over the place using their live demos, so it's not something just with us. I remember a time when it did not do this, the page would finish loading just fine, approx. 7 months ago it all started.
I don't know what changed but I wish they would fix it..
-
07-16-2002, 05:34 AM #18Newbie
- Join Date
- Jan 2002
- Location
- The Netherlands
- Posts
- 10
Hi there,
from behind the firewall I am know, I don't even have permission to access my Cpanel with http://www.mydomain.com:2082/
Are there any other alternatives.....?
Thanks!
Marsha
-
07-16-2002, 05:42 AM #19Eternal Member
- Join Date
- Sep 2000
- Posts
- 851
You can change the port by editing /var/cpanel/cpanel.config, however you still need to make sure that whatever access control device is in place will allow connections on the new port you choose (and you also don't want to choose a port that's in use by another service--check /etc/services to be sure).
If it's a firewall that's blocking your access, it's very unlikely that any other port is going to be open either. Perhaps contact your firewall administrator (or ISP?) to see if they can enable access on port 2082 and 2083 for you.Matt Lightner - http://www.mattlightner.com/
- First initial to the last name at the mail service provided by the world's largest search engine
- Founder and CEO (Former) Site5.com, sold in 2008
- Really honestly wants to be a good WHT citizen but can never remember all the correct etiquette. Mods, sorry in advance
-
07-16-2002, 12:33 PM #20Junior Guru
- Join Date
- Jun 2002
- Location
- Chicago
- Posts
- 191
Matt-
I realize we should probably be talking about this at cpanel.net's forums, but whatev. Is there a similar config for the backend, (whostmgrd) where you can reassign a port, among other things?
I know I can tweak the stunnel startup & config and manually whisk it away to another port, but I am curious if there is a config file for the WHM as cpaneld has.
Thanks man.
-
07-16-2002, 12:53 PM #21Web Hosting Master
- Join Date
- May 2001
- Location
- Dayton, Ohio
- Posts
- 4,977
Originally posted by isildur
Matt-
I realize we should probably be talking about this at cpanel.net's forums, but whatev. Is there a similar config for the backend, (whostmgrd) where you can reassign a port, among other things?
I know I can tweak the stunnel startup & config and manually whisk it away to another port, but I am curious if there is a config file for the WHM as cpaneld has.
Thanks man.
I just use IPtables when I want to forward 2086 to another port...