Skip to main content

Server's certificate is unknown when using ftp with cPanel

Comments

6 comments

  • quietFinn
    If the certificate is for the server you are connecting to it's normal, and you can ignore that message.
    0
  • ArjunSuhass
    Okay @quietFinn thanks for the Support
    0
  • cPRex Jurassic Moderator
    Yes, this is just like when you make an SSH connection to a machine for the first time and it asks if you're sure you recognize the host. Nothing to be concerned with at all here since the screenshots show the SSL is valid.
    0
  • plesk4lyf
    @ArjunSuhass the reason for the warning is in the screenshot: Host: 263research.com:21 - Hostname does not match certificate That's because the certificate Common Name doesn't mention 263research.com . The certificate is for Common Name: v5837.securen.net. If you instead connect to v5837.securen.net, you'll still get the prompt, but there'll be no warning about the name not matching. I vaguely remember out of pureftp and proftp, one of them doesn't support SNI, which allows you to use individual SSL certificates to cover the configured hostnames. It's not mentioned on in the documentation of differences: FTP Server Selection | cPanel & WHM Documentation @cPRex would know!
    0
  • ecartz
    Warning: The server's certificate is unknown. Please carefully examine the certificate to make sure the server can be trusted.

    This is perfectly normal and expected. The first time you connect, the certificate is unknown. It may be possible to configure FileZilla to look the same place as your SSH client to see if a certificate is known. This would be highly dependent on what SSH client you use. Or you could replace FileZilla with another FTP client that interacts better with your SSH client. It looks like this link both PureFTPD and ProFTPD now support SNI (which is used to allow a certificate to answer multiple domains on the same IP). However, you may have to use a particular version (or install modules), as they may not come with it by default.
    0
  • cPRex Jurassic Moderator
    "SNI support was not present in pure-ftpd 1.0.47. It was added in 1.0.48." according to the pureftp docs.
    0

Please sign in to leave a comment.