Force (SSL) secure logins in WHM and Cpanel Published: Oct 28, 2003
  • Rating


Change /whm and /cpanel aliases to https making all logins encrypted and secure.

This tutorial will show you how to accomplish https connections when going to servername/whm or /cpanel for those who may still be using the insecure ways to login to WHM and CPanel forcing a secure connection for all users.

Step 1: Backup files
cp /etc/httpd/conf/httpd.conf /etc/httpd/conf/httpd.conf.insecure

Step 2: Edit the file
pico /etc/httpd/conf/httpd.conf

Step 3: Search for the line:
Ctrl+W   then  ScriptAlias /cpanel /usr/local/cpanel/base/redirect.cgi

Step 4: Edit the line to show the following: ScriptAlias /cpanel /usr/local/cpanel/base/sredirect.cgi (simply change the redirect.cgi to sredirect.cgi)

Step 5: Search for the line:
Ctrl+W   then  ScriptAlias /whm /usr/local/cpanel/base/whmredirect.cgi

Step 6: Edit the line to show the following:
ScriptAlias /whm /usr/local/cpanel/base/swhmredirect.cgi (simply change the whmredirect.cgi to swhmredirect.cgi)

Step 7: Save and exit using the following: Ctrl+X  then press Y

Step 8: Restart Apache to have changes take effect:
service httpd restart
  • Rating


Related Articles

Comments (3)

  • Gravatar - Duntuk
    Duntuk 19:38, February 1, 2004
    excellent article...

    simple and straight to the point...
  • Gravatar - Jodawi
    Jodawi 16:56, January 8, 2006
    Should probably also change /controlpanel and other such aliases
  • Gravatar - anon
    anon 18:08, October 12, 2006
    newer versions of cpanel already have this feature if you enable it in whm

Add Your Thoughts is a hosting directory, not a web host.

Copyright © 1998-2024