Directadmin Enable SSL

It's really silly how DA doesn't enable SSL by default but is otherwise a stable, fast and secure control panel.

Here's a copy and paste way of enabling SSL for Directadmin in just a few seconds:

*setup SSL

openssl req -x509 -newkey rsa:1024 -keyout /usr/local/directadmin/conf/cakey.pem -out /usr/local/directadmin/conf/cacert.pem -days 9999 -nodes

That creates the public certificate and private key pair in the location Directadmin expects to find it and with the filenames it expects.

Set the correct permissions

chown diradmin:diradmin /usr/local/directadmin/conf/cakey.pem
chmod 400 /usr/local/directadmin/conf/cakey.pem

Enable SSL in the config file

sed -i "s/SSL=0/SSL=1/g" /usr/local/directadmin/conf/directadmin.conf

Restart Directadmin

service directadmin restart

Visit https://yourip:2222 and you'll see that SSL is enabled and working, this is again a huge security blunder for Directadmin because there's no excuse for the control panel not to be encrypted by SSL by default.  In fact I don't think any Control Panel should even have the option of connecting without SSL.


Tags:

directadmin, enable, sslit, doesn, ssl, default, panel, enabling, openssl, req, newkey, rsa, keyout, usr, conf, cakey, pem, cacert, nodes, creates, certificate, expects, filenames, permissions, chown, diradmin, chmod, config, sed, quot, restart, https, yourip, ll, enabled, blunder, encrypted, connecting,

Latest Articles

  • How To Upgrade Debian 8,9,10 to Debian 12 Bookworm
  • Linux dhcp dhclient Mint Redhat Ubuntu Debian How To Use Local Domain DNS Server Instead of ISPs
  • Docker dockerd swarm high CPU usage cause solution
  • Docker Minimum Requirements/How Efficient is Docker? How Much Memory Does Dockerd Use?
  • qemu-nbd: Failed to set NBD socket solution qemu-nbd: Disconnect client, due to: Failed to read request: Unexpected end-of-file before all bytes were read
  • apache2 httpd apache server will not start [pid 22449:tid 139972160445760] AH00052: child pid 23248 exit signal Aborted (6) solution Mint Debian Ubuntu Redhat
  • How to use the FTDI USB serial cable to RJ45 adapter to connect to the console on Cisco/Juniper Switch Router Firewall in Linux Ubuntu Debian Redhat
  • How To Setup Python3 in Ubuntu Docker Image for AI Deep Learning
  • How to Configure NVIDIA GPUs with Docker on Ubuntu: A Comprehensive Guide for AI Deep Learning CUDA Solution
  • Linux Ubuntu Mint how to check nameservers when /etc/resolv.conf disabled solution
  • Docker cannot work on other overlayfs filesystems such as ecryptfs won't start overlayfs: filesystem on '/home/docker/overlay2/check-overlayfs-support130645871/upper' not supported as upperdir
  • Linux How To Access Original Contents of Directory Mounted Debian Mint CentOS Redhat Solution
  • ecryptfs how to manually encrypt your existing home directory or other directory
  • How to Reset CIPC Cisco IP Communicator for CME CUCM CallManager
  • Internet Explorer Cannot Download File "Your security settings do not allow for this file to be downloaded." Security Settings Solution
  • Linux How To Upgrade To The Latest Kernel Debian Mint Ubuntu
  • Firefox how to restore and backup saved passwords and history which files/location
  • Linux How To echo as root solution to use tee permission denied solution Ubuntu Debian Mint Redhat CentOS
  • Linux how to keep command line bash process running if you are disconnected or need to logout of SSH remotely
  • Linux swapping too much? How to check the swappiness and stop swapping
    • Copyright © realtechtalk.com 2023