admin login says insecure site (.740)

even though there is a valid cert for my host name, when I got to login I get the dreaded message saying site is not secure.  However on my .750 version there is no problem.

Can not run update manually because ie7.txt file is not accessable from shell.

So I have a valid host ssl cert....see below.  But I have tried three different browsers and 2 different androids.  They all say site is untrusted.

Here is the ssl report  http://cruisemissile.com/ssltest.pdf

ok I figured out the problem.  login/index.php refers to http links.  And since the file is encrypted by the authors, there is no way to fix it.

Code: [Select]

<!DOCTYPE html>
<!--[if lt IE 7]> <html class="lt-ie9 lt-ie8 lt-ie7" lang="en"> <![endif]-->
<!--[if IE 7]> <html class="lt-ie9 lt-ie8" lang="en"> <![endif]-->
<!--[if IE 8]> <html class="lt-ie9" lang="en"> <![endif]-->
<!--[if gt IE 8]><!--> <html lang="en"> <!--<![endif]-->
<head>
  <meta charset="utf-8">
  <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1">
  <title>Login | CentOS WebPanel</title>
  <link rel="icon" href="design/img/ico/favicon.ico" type="image/png">
  <link rel="stylesheet" href="design/img/login.css">
  <!--[if lt IE 9]><script src="//html5shim.googlecode.com/svn/trunk/html5.js"></script><![endif]-->
</head>
<body>
  <section class="container">
    <div class="login">
      <img src="design/images/cwp_small.png">
      <h1>Login to CentOS WebPanel
  </h1>
      <form method="post" action="">
        <p><input type="text" name="username" value="" placeholder="Admin Username"></p>
        <p><input type="password" name="password" value="" placeholder="Admin Password"></p>
        <p class="remember_me">
          <label>
            <input type="checkbox" name="fast_login" id="fast_login">
            Fast Login (no stats and checks)
          </label>
        </p>
        <p class="submit"><input type="submit" name="commit" value="Login"></p>
      </form>
    </div>

    <div class="login-help">
       <p>Please use SSL login <a href='https://198.58.96.204:2031/login/index.php'>Click here for SSL login</a>.</p>  

    </div>
  </section>

  <section class="about">
    <p class="about-links">
      <a href="http://centos-webpanel.com" target="_parent">Visit Website</a>
      <a href="http://centos-webpanel.com/installation-instructions" target="_parent">How to Install</a>
    </p>
    <p class="about-author">
      &copy; 2019 <a href="http://centos-webpanel.com" target="_blank">CentOS WebPanel</a>
  control panel for linux
</body>
</html>


I think you are confused about ssl for apache and cwp they can use different ssl cert/key files like any other service.
if they use the same files then maybe simply restart of cwp would get you new certs loaded.

apache
https://love.silverbells.us/

cwp
https://love.silverbells.us:2087/

Hello

cert is fine as you can see by the attached pdf above.  The problem is the browser will balk if there are any references to http in the source code.  In this case, centos cwp hyperlink is unsecure.  Same happens if there is an image that is http:, browser will raise a red flag.

FYI apache restart was the first thing I did.  Its the http references plain and simple.  Not open to discussion.

again, you are mixing https at port 443 and https at port 2087/2031 this are two different services and each of them can have a different certificate and that is the issue you have now.

Note that this test you sent is for port 443 only!
If restart didn't help then you need to check config for cwpsrv, you can find instructions for that on wiki or forum.

I understand that ports are different.  But I didnt create a cert for anything.  All certs were created by cwp after creating hostname.

You will not agree that ANY html hyperlinks on the login page will throw an untrusted error in the browser?  If I have images on any of my websites that are http:// then FF IE and Chrome will say that the site is untrusted.

Ok so i did a check with sslshopper on port 2031 and it says cert expired 36 days ago.  So now what?

I dont know why it says cert is expired.  Date on hostname.key certificate file is feb 12 2019

The only thing I noticed is the lack of a love.silverbells.us.csr file in the /etc/pki/tls/certs directory.

On my other server on a different IP there is a .csr file.

But for sure all cert files have a feb 12 2019 date.