ukbhuk Posted June 16, 2017 Share Posted June 16, 2017 Hi, I have an SSL cert on my domain https://www.ukbh.co.uk/ and the home page on my whcms is https://www.ukbh.co.uk/webhost/index.php and has the green padlock. I can't seem to get rid of this? Any advice would be great, thanks Keith 0 Quote Link to comment Share on other sites More sharing options...
earthgirlllc Posted June 18, 2017 Share Posted June 18, 2017 You want the green padlock, it means the page is securely loading over https:// 0 Quote Link to comment Share on other sites More sharing options...
ukbhuk Posted June 19, 2017 Author Share Posted June 19, 2017 Thanks Earthgirlllc, my apologies, I meant I cant get rid of the "A Certificate Authority verified SSL certificate was not detected" as you can see in the image. My cron jobs are running also, and again the error for that I have my own template too... but get the cart error for using the default template. However testing the site all seems to work ok, orders are taken, domains added and hosting setup! Cheers Keith 0 Quote Link to comment Share on other sites More sharing options...
bear Posted June 19, 2017 Share Posted June 19, 2017 I get the SSL warning on my dev installation, since it can't connect externally to my install to check it. Maybe your firewall (assuming you have one) is blocking inbound connections? 0 Quote Link to comment Share on other sites More sharing options...
ukbhuk Posted June 20, 2017 Author Share Posted June 20, 2017 Bear, that might be it, I have a firewall, CSF, and other blocks on the server. just had a quick check but couldn't see anything that might block it. But will look further, thanks for the suggestion. 0 Quote Link to comment Share on other sites More sharing options...
penguin Posted June 20, 2017 Share Posted June 20, 2017 We've got a bug open with WHMCS regarding this - the issue is that the check triggers a modsecurity rule as it's not using the correct curl syntax when checking the certificate. It's either a case of whitelisting the rule, or waiting for a fix from them to use the correct curl commend in this check. It doesn't have any operational issues though as you know the SSL cert is working correctly. 0 Quote Link to comment Share on other sites More sharing options...
bear Posted June 21, 2017 Share Posted June 21, 2017 the check triggers a modsecurity rule You don't happen to know which one, do you? 0 Quote Link to comment Share on other sites More sharing options...
penguin Posted June 22, 2017 Share Posted June 22, 2017 SecRule REQUEST_HEADERS:User-Agent "(?:\b(??:indy librar|snoop)y|microsoft url control|lynx)\b|d(?:ownload demon|isco)|w(?:3mirror|get)|l(?:ibwww|wp)|p(?:avuk|erl)|cu(?:sto|rl)|big brother|autohttp|netants|eCatch)" \ "chain,log,auditlog,msg:'Request Indicates an automated program explored the site',id:'1234123429',severity:'5'" SecRule REQUEST_HEADERS:User-Agent "!^apache.*perl" It's because they are not passing a user agent with the curl request and so this blocks it. A simple fix but nothing from them for this yet 0 Quote Link to comment Share on other sites More sharing options...
bear Posted June 22, 2017 Share Posted June 22, 2017 (edited) [disregard, removed question] Looks like an old gotroot rule. Edited June 22, 2017 by bear 0 Quote Link to comment Share on other sites More sharing options...
co-operativeworld.org Posted August 25, 2017 Share Posted August 25, 2017 I found a problem when WHMCS done its installation..... Setup -> General Settings and then on General Tab .... WHMCS did not set BOTH "Domain" and "WHMCS System URL" fields to https, it set them to only http Still trying to sort out all the rest of the CRAP installation bugs. 0 Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.