Control Web Panel

WebPanel => CentOS-WebPanel Bugs => Topic started by: n8v8r on January 25, 2018, 10:13:58 PM

Title: own TLS certificate on CWpanel secures only root but not end user
Post by: n8v8r on January 25, 2018, 10:13:58 PM

As discussed here the http://forum.centos-webpanel.com/ssl/secure-cwp-admin-panel-port-2031/ (http://forum.centos-webpanel.com/ssl/secure-cwp-admin-panel-port-2031/)

Title: Re: own TLS certificate on CWpanel secures only root but not end user
Post by: n8v8r on February 08, 2018, 07:28:03 PM

not wanting to mess with CWP internals still (CWPpro 0.9.8.451) leaves both panel, root and end user, to the CWP tls certificate as opposed to one's own. Which becomes a larger issue when deploying Strict Transport Security, as pointed out over here http://forum.centos-webpanel.com/centos-webpanel-bugs/cwpanel-access-not-compatible-with-strict-transport-security/