Auto SSL DCV Validation error Bug on Apache Custom Port

syslint

• January 12, 2018 23:28

There is an issue with apache DCV validation while apache runs on a custom port. This may result in accessing the DCV temporary files via proxy from another webserver in port 80 Steps to Recreate the issue: 1) Access the key webdisk.example.com/.well-known/pki-validation/DE86811B0380F9DFF632716F443CF18D.txt via apache on port 80 works fine without redirection to ssl port 2) Change apache port to some other port say 9080, then webdisk.example.com:9080/.well-known/pki-validation/DE86811B0380F9DFF632716F443CF18D.txt, won't work. It always redirect to HTTPS. For updating the correct Autossl certificate those subdomain urls must be need to be working in HTTP instead of HTTPS even with custom port change in apache. This issue exist in all versions of cpanel.

• 

  cPanelMichael

  • January 19, 2018 18:26

  Hi @syslint, I just wanted to follow up to let you know we do have an additional internal case open to determine if it's feasible for AutoSSL to properly detect the custom Apache port. I'll update this thread with more information on the status of this case as it becomes available. Thank you.

  0
• 

  cPanelMichael

  • January 19, 2018 21:07

  Hello, To update, internal case CPANEL-18074 will allow for AutoSSL DCV with proxy subdomains when using a custom Apache (non-SSL) port. I'll update this thread again once it's published. Thank you.

  0
• 

  cPanelMichael

  • January 25, 2018 17:38

  Hello, Internal case CPANEL-18074 is now published as part of cPanel version 70: Fixed case CPANEL-18074: Allow proxy subdomain HTTP DCV to work over nonstandard non-SSL port. There's an open request to backport this to cPanel version 68 as well. I'll update this thread with more information on the status of the backport as it becomes available. Thank you.

  0
• 

  Jose Nobile

  • January 26, 2018 09:55

  Posting this only to receive a notification when it is backported to the current cPanel version. Is there another way to subscribe to notifications?

  0
• 

  Infopro

  • January 26, 2018 10:14

  Top right corner of this thread is a link to "Watch Thread".

  0
• 

  cPanelMichael

  • January 30, 2018 15:49

  Hello, You can also follow the cPanel 68 Change log at:

  0
• 

  cPanelMichael

  • February 13, 2018 14:52

  Hello, To update, internal case CPANEL-18074 is now published to cPanel version 68.0.29: Fixed case CPANEL-18074: Allow proxy subdomain HTTP DCV to work over nonstandard non-SSL port. Thank you.

  0

Please sign in to leave a comment.