cPanel & WHM Version 92 has been released, and brings a slew of great updates. Take a look at what is included, and then upgrade today!
This object is in archive! 

Limited SSL functionality for clients

zchristianl shared this idea 6 years ago
Open Discussion

Hear me out on this,


I want clients to be able to ONLY:


  • View their server's SSL Certificates
  • Install their OWN SSL Certificates
  • Prevent Client Generation of an SSL Certificate

Best Answer
photo

Zlesavich


Are you proposing that you want customers to be able to do everything except generate SSL certificates on your server? Is that accurate?


As I understand your feature request, users would still be able to generate their own SSL certificates through the command line or on any other system and then upload to your system.

Could you explain the benefit of this feature? Can you give us an example of why you would like this ability and what it would help to accomplish?

Comments (3)

photo
1

Zlesavich


Are you proposing that you want customers to be able to do everything except generate SSL certificates on your server? Is that accurate?


As I understand your feature request, users would still be able to generate their own SSL certificates through the command line or on any other system and then upload to your system.

Could you explain the benefit of this feature? Can you give us an example of why you would like this ability and what it would help to accomplish?

photo
1

Sorry I could've been more specific. It'd be nice if clients can install their own purchased certificates so I don't have to. I don't want them to upload their own generated certificates, because today's modern browsers flag that as a security risk, (scammers trying to fool people into thinking their site is secure without verification).


The benefit would be that it's more secure I guess. I just don't want a server full of self-generated certificates. People that don't know much about SSL would panic and bail out on the site if Chrome displayed a warning that the certificate was not verified by that kind of organization.


My point is I just want a way to disallow self-generated SSL certificates from being uploaded.

photo
1

Having a self-signed SSL is better than having no SSL at all. I'd rather submit a form through a non-signed SSL than through plain HTTP.


Self-signed SSLs offer exactly the same level of protection as signed SSLs, except that they weren't issued by a trusted authority.

Leave a Comment
 
Attach a file