BobbyL Posted March 29, 2004 Posted March 29, 2004 Based on the quick feedback in another post here in this forum, I decided to open a reseller account with TCH. When I was connecting the my new CPanel, I was greeted with a SSL Certificate warning message saying that the message was the issuer was not trusted by Mozilla Firebird. I didn't copy the issurer's name, but it was something like severnode...etc. Since I wasn't in that much of a hurry to set it up. I decided I would post question here first. Is this normal? Should I be concern about it? Quote
Alan Posted March 29, 2004 Posted March 29, 2004 BobbyL, I don't have a answer for both the questions, but it is not normal, or atleast I did not get it. A Staff member should be along shortly though. Quote
BobbyL Posted March 29, 2004 Author Posted March 29, 2004 I have attached the warning I recieve below. To add a little more information to this now that I am learning that his is not normal, I live in Thailand and manage an Internet Cafe running a windows 2000 server network. Quote
BobbyL Posted March 29, 2004 Author Posted March 29, 2004 Could this be because I am using Morzilla Firebird .7 and this cert is not recognized by this browser.... Come to think of it, I will try it in IE now. ... I just tried the CPanel in IE and for the most part I have got the same type of warning message with this browser too. Quote
Alan Posted March 29, 2004 Posted March 29, 2004 You will need to wait on a staff member to make sure this wont hurt anything, as I do not know what that Ticket is or does, and I am NOT Liable for any damages that arise from doing this: If you are in internet Explorer you might try: Click: Internet Options/Security/Trusted Sites and add the link to that and see if it makes the warning go away. Quote
Alan Posted March 29, 2004 Posted March 29, 2004 Also, have you tried just 'Accept this Certificate Permanently'? Quote
BobbyL Posted March 30, 2004 Author Posted March 30, 2004 Allan, I can bypass the warning by selecting tempopary or permently accepting the the cert. I am concern about this as I this is a reseller account and the first thing I will need to do is change my password as instucted by the setup instruction sent by TCH. If this is a breach of security, I will have just given someone free access to my sites. Note: I do think this is probably nothing to be ccncern about it. Just would be more comfortable if someone from TCH would say something about it. Quote
BobbyL Posted March 30, 2004 Author Posted March 30, 2004 Good News. I started a job ticket with TCH and got a reply back from tech support: You get this message because you are accessing https://domain:2083. This is for encryption and data secureity. This is not a trusted certificate and hence you receive a warning message . There is no problem in accepting this . This will also provide you 128 bit ecryption and there by you can access cpanel securely via internet. Quote
Rennemo Posted March 31, 2004 Posted March 31, 2004 Hi all, I just got here, looks good so far When I try accessing https://mydomain:2083/ I get >The following error was encountered: Access Denied. Access control configuration prevents your request from being a Do I have to open this port in my firewall? As far as I know, everything outbound is allowed except port81 (for beagle and friends.) I'll look around the forums and see if I can find anything about it. Also, I am going to develop a site with a few others, is there possible to password protect the www (~/home/www)root dir? Maybe I need to manually edit the .htaccess there? Steinar. Quote
MikeJ Posted March 31, 2004 Posted March 31, 2004 Yes, you do need to make sure port 2083 outbound is open through your firewall. If you want to password protect your whole site, you will have to modify the .htaccess in the www dir as cPanel won't do it directly. Here is a thread that has a recommendation of how to do it. Quote
Rennemo Posted March 31, 2004 Posted March 31, 2004 Thanks TCH-MikeJ, fast reply Looks like everything outbound is allowed from my firewall only: >[rennemo@myfirewall rennemo]$ telnet mydomain 2083 Trying xxx.xxx.xxx.xxx... Connected to mydomain . Escape character is '^]'. My windows pc's don't get any reply. I guess that why I can't connect to webmail as well Steinar. Quote
MikeJ Posted March 31, 2004 Posted March 31, 2004 (edited) Yea, looks like it. Since you are dabbling in there, the non-standard ports that you need access to at TCH: Ports required (all TCP): 2082 - cPanel access 2083 - cPanel SSL access 2095 - WebMail access 2096 - WebMail SSL access And if you are a reseller or dedicated host user: 2086 - WebHost Manager access 2087 - WebHost Manager SSL access Edited March 31, 2004 by TCH-MikeJ Quote
Rennemo Posted March 31, 2004 Posted March 31, 2004 Hm, looking at my firewall: High Ports (1024:65535 outbound, inbound if related to an outbound connection) are (should be) allowed, as I didn't close them. I can access cpanel at 2082 but not the others. I'll look into my firewall docs, thanks again. Steinar. Quote
Rennemo Posted April 1, 2004 Posted April 1, 2004 Well, after looking at my iptables setup for a couple of hours I got the bright idea of trying to connect from another computer, and, of course it work'd... Sigh, will I ever learn not to mess with this stuff late at night.. Steinar. Quote
TCH-Rob Posted April 1, 2004 Posted April 1, 2004 Well, after looking at my iptables setup for a couple of hours I got the bright idea of trying to connect from another computer, and, of course it work'd... Sigh, will I ever learn not to mess with this stuff late at night.. Steinar. Not if you are like me Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.