Page 1 of 3 123 LastLast
Results 1 to 10 of 23

Thread: LetsEncrypt SSL

  1. #1
    Member bhills's Avatar
    Join Date
    Mar 2004
    Location
    Rocky Mountains
    Posts
    75

    Default LetsEncrypt SSL

    A suggestion.

    Automaticly add a LetsEncrypt SSL certificate for each domain in cPanel reseller accounts. I don't know the mechanism for this but this is being done at another host I use and it is great. Very handy. Free. The https://mydomain.com is already set up to go and all I have to do is add a few lines in .htaccess to point to it.

    Setting up https on a domain is not something I do often so when I do, I previously had to take the time to re-educate myself to get it done. This LetsEncrypt addition to the dathorn servers would be a very nice added benefit.

  2. #2
    Administrator AndrewT's Avatar
    Join Date
    Mar 2004
    Location
    Tulsa, OK
    Posts
    3,634

    Default

    We do fully plan to activate this feature at some point going forward. It's not long been included in the stable cPanel builds and there are still a few items they need to address before we can consider it ready to use across the board.

  3. #3
    Member bhills's Avatar
    Join Date
    Mar 2004
    Location
    Rocky Mountains
    Posts
    75

    Default

    Thanks. That sounds great...

  4. #4
    Junior Member
    Join Date
    Apr 2006
    Posts
    4

    Default

    I'm looking forward to the Let's Encrypt feature as well. Subscribing to this thread! Thanks.

  5. #5
    Member shalom_m's Avatar
    Join Date
    Mar 2004
    Location
    Or-Yehuda, Israel
    Posts
    56

    Default

    Any news on this feature?
    Is there a step by step manual available?
    Some of my clients have lost the on-line messaging ability.

  6. #6
    Administrator AndrewT's Avatar
    Join Date
    Mar 2004
    Location
    Tulsa, OK
    Posts
    3,634

    Default

    We do not have a specific ETA at this time. cPanel 62 will include some of the changes we're needing and should be released as a stable build late this week or next week. Further testing will be necessary once this has occurred.

    I'm not sure what you're referring to in regards to "lost the on-line messaging ability". This thread wouldn't really have any impact on that. Browsers, like Chrome, are simply flagging pages as not secure when login forms are present and being submitted over unencrypted HTTP.

  7. #7
    Member shalom_m's Avatar
    Join Date
    Mar 2004
    Location
    Or-Yehuda, Israel
    Posts
    56

    Default

    Firefox 51 effectively blocks method="push" to non secure addresses.

    See: https://www.fxsitecompat.com/en-CA/d...ed-by-default/

  8. #8
    Administrator AndrewT's Avatar
    Join Date
    Mar 2004
    Location
    Tulsa, OK
    Posts
    3,634

    Default

    That link notes the Firefox equivalent of what I mentioned about Chrome in my previous reply. Both browsers are warning users about submitting login information on unencrypted connections. Doing so has been a bad idea all along and now browsers are simply warning about it.

    Let's Encrypt is coming. We just want to make that all issues and feature limitations are ironed out first. Our focus is always on stability and security first, with new features being enabled as they can meet our requirements. Meanwhile, you're more than welcome to install an SSL certificate via some other means, paid or otherwise, if needed. You can even use Let's Encrypt manually per the forum thread just below this one, here.

  9. #9
    Member shalom_m's Avatar
    Join Date
    Mar 2004
    Location
    Or-Yehuda, Israel
    Posts
    56

    Default

    Thank you Andrew,
    I will wait a little longer as you suggested.
    Leading edge is all well and good as long as it does not morph into bleeding edge.

  10. #10
    Junior Member
    Join Date
    Jun 2006
    Posts
    16

    Default

    Will the deployment of LetsEncrypt resolve the problem where iOS 10.3.x devices are not trusting certificates from Dathorn?

    If anyone has a more immediate solution, please let me know. Every time I check my phone, I'm getting multiple warnings that the certificates are not trusted (and in the latest versions of iOS, there is no longer a mechanism to manually trust).

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •