This object is in archive!
Limited SSL functionality for clients
Open Discussion
Hear me out on this,
I want clients to be able to ONLY:
- View their server's SSL Certificates
- Install their OWN SSL Certificates
- Prevent Client Generation of an SSL Certificate
I like this idea 
cPanel, WebHost Manager and WHM are registered trademarks of cPanel, L.L.C. for providing its computer software that facilitates the management and configuration of Internet web servers.
Zlesavich
Are you proposing that you want customers to be able to do everything except generate SSL certificates on your server? Is that accurate?
As I understand your feature request, users would still be able to generate their own SSL certificates through the command line or on any other system and then upload to your system.
Could you explain the benefit of this feature? Can you give us an example of why you would like this ability and what it would help to accomplish?
Zlesavich
Are you proposing that you want customers to be able to do everything except generate SSL certificates on your server? Is that accurate?
As I understand your feature request, users would still be able to generate their own SSL certificates through the command line or on any other system and then upload to your system.
Could you explain the benefit of this feature? Can you give us an example of why you would like this ability and what it would help to accomplish?
Zlesavich
Are you proposing that you want customers to be able to do everything except generate SSL certificates on your server? Is that accurate?
As I understand your feature request, users would still be able to generate their own SSL certificates through the command line or on any other system and then upload to your system.
Could you explain the benefit of this feature? Can you give us an example of why you would like this ability and what it would help to accomplish?
Zlesavich
Are you proposing that you want customers to be able to do everything except generate SSL certificates on your server? Is that accurate?
As I understand your feature request, users would still be able to generate their own SSL certificates through the command line or on any other system and then upload to your system.
Could you explain the benefit of this feature? Can you give us an example of why you would like this ability and what it would help to accomplish?
Sorry I could've been more specific. It'd be nice if clients can install their own purchased certificates so I don't have to. I don't want them to upload their own generated certificates, because today's modern browsers flag that as a security risk, (scammers trying to fool people into thinking their site is secure without verification).
The benefit would be that it's more secure I guess. I just don't want a server full of self-generated certificates. People that don't know much about SSL would panic and bail out on the site if Chrome displayed a warning that the certificate was not verified by that kind of organization.
My point is I just want a way to disallow self-generated SSL certificates from being uploaded.
Sorry I could've been more specific. It'd be nice if clients can install their own purchased certificates so I don't have to. I don't want them to upload their own generated certificates, because today's modern browsers flag that as a security risk, (scammers trying to fool people into thinking their site is secure without verification).
The benefit would be that it's more secure I guess. I just don't want a server full of self-generated certificates. People that don't know much about SSL would panic and bail out on the site if Chrome displayed a warning that the certificate was not verified by that kind of organization.
My point is I just want a way to disallow self-generated SSL certificates from being uploaded.
Having a self-signed SSL is better than having no SSL at all. I'd rather submit a form through a non-signed SSL than through plain HTTP.
Self-signed SSLs offer exactly the same level of protection as signed SSLs, except that they weren't issued by a trusted authority.
Having a self-signed SSL is better than having no SSL at all. I'd rather submit a form through a non-signed SSL than through plain HTTP.
Self-signed SSLs offer exactly the same level of protection as signed SSLs, except that they weren't issued by a trusted authority.
Replies have been locked on this page!