1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

New host say 'just ignore' insecure connection warning when logging in?

Discussion in 'Making Money' started by PineappleCrush, May 16, 2017.

  1. PineappleCrush

    PineappleCrush Regular Member

    Joined:
    Jan 20, 2016
    Messages:
    313
    Likes Received:
    25
    I got new hosting today and when I go to
    Code:
    domain.com/cpanel
    I get the bad certificate, insecure connection warning from the browser.

    Is this bad?

    Doesn't it mean that they are succeptiple to mitm attacks since the login info will be unencrypted?

    I informed them of it and they just said 'please just ignore it'.
     
  2. stevenjcolwell

    stevenjcolwell Registered Member

    Joined:
    Feb 19, 2016
    Messages:
    99
    Likes Received:
    40
    Gender:
    Male
    Occupation:
    SEO
    Location:
    UK
    Some sketchy stuff that. Then again if you are going to yourdomain.com/cpanel and your site doesn't have https then i am not surprised. If its there site then leave and never go back
     
  3. OrgasmicSweets

    OrgasmicSweets Newbie

    Joined:
    Mar 5, 2017
    Messages:
    19
    Likes Received:
    6
    Like stated above if it's yourdomain.com/Chanel and you don't have a ssl certificate you will receive that message however if it's yourhost.com/CPAnel leave as your connecting and files are not secured
     
  4. CyberHour

    CyberHour Jr. VIP Jr. VIP

    Joined:
    Apr 3, 2016
    Messages:
    647
    Likes Received:
    160
    Location:
    localhost
    Home Page:
    Just a note here, SSL is a must have BUT this does not necessary mean 1000000% secured.
    If you are trying to access cPanel through your domain.com/cpanel and you don't have SSL over it then there is nothing strange on this you can get Let's encrypt and get free SSL (contact your provider to provide you with one).

    Don't think that yourprovider.com/cpanel lack ssl :)

    Cheers
     
    • Thanks Thanks x 1
  5. PineappleCrush

    PineappleCrush Regular Member

    Joined:
    Jan 20, 2016
    Messages:
    313
    Likes Received:
    25
    I'm not too clear on this. I meant if I go to their website and login, yes that is secure, but I can't access my cpanel unless I go to mydomain.com/cpanel.

    I never had this message on my previous host when I would do domain.com/cpanel so why now? I never installed any ssl ceritificates on that one either.
     
  6. OrgasmicSweets

    OrgasmicSweets Newbie

    Joined:
    Mar 5, 2017
    Messages:
    19
    Likes Received:
    6
    They should have an option to login via their domain like yourhost.com/cpanel or yourhost.com:2083
     
  7. Diplomat

    Diplomat Jr. VIP Jr. VIP

    Joined:
    Oct 25, 2011
    Messages:
    948
    Likes Received:
    440
    Home Page:
    I'm reading a lot of stupid shit in this thread from people who have no idea what this error means.

    When your cPanel account is added a self generated SSL is created for your account. It's there to protect your connection if you don't have a SSL installed on your domain.
    What is not the best is that the host itself has not set up an SSL for their server, but it's not a big problem at all.

    There is no problem accepting that certificate and using it. You are just seeing this message there because it's self generated and your browser doesn't trust it (because it doesn't have required root certificates installed - "CA").

    So OP, don't worry, it's all good, but ideally you should get yourself your own SSL if you are that worried. It's cheap, like $7 with Namecheap.
     
    • Thanks Thanks x 1
  8. PineappleCrush

    PineappleCrush Regular Member

    Joined:
    Jan 20, 2016
    Messages:
    313
    Likes Received:
    25
    thanks.

    No I definintely don't want to buy an ssl, since I only want the hosting for very basic php scripts and cloaking. But why didnt I get this message on my last host and only on this new one?
     
  9. Diplomat

    Diplomat Jr. VIP Jr. VIP

    Joined:
    Oct 25, 2011
    Messages:
    948
    Likes Received:
    440
    Home Page:
    It could be that your old host just redirected you to the server's hostname which already had a trusted SSL. That's how I do and most companies do.
    Next time read that notification a bit more carefully and you will see what it says. Self signed certificate can be used for many things, for example in connections between 2 servers when something super secret is not being published.
    Unfortunately self signed certificate may not be the best choice for places where credit card information is being shared for example, but when you are hosting simple stuff and nothing that important, a self signed will be fine because keep in mind cPanel (im not 100% sure) generates 2048 bit certificates for your account which are really difficult to crack too.
     
    • Thanks Thanks x 1
  10. Diplomat

    Diplomat Jr. VIP Jr. VIP

    Joined:
    Oct 25, 2011
    Messages:
    948
    Likes Received:
    440
    Home Page:
    • Thanks Thanks x 1
  11. somethingclever

    somethingclever Newbie

    Joined:
    Nov 26, 2008
    Messages:
    24
    Likes Received:
    4
    Gender:
    Male
    Occupation:
    Anything that puts money in my pocket
    Location:
    in the Ether
    Home Page:
    you don't have to buy ssl use https://letsencrypt.org/
     
  12. CenTex Hosting

    CenTex Hosting Jr. VIP Jr. VIP

    Joined:
    Nov 8, 2009
    Messages:
    1,898
    Likes Received:
    719
    Gender:
    Male
    Occupation:
    Founder/CEO
    Location:
    Austin, TX
    Home Page:
    Not sure who your provider is. But if you can only access it by your domain.com/cpanel then you will need to get an ssl for it.

    Most other providers will give a universal link that is secure that you can use to log into your cPanel account.