Redirect.php - Images not showing on DA Login

V

Vibe

Verified User
Joined
Aug 3, 2005
Messages
120
Hello everyone,

I just installed a host server SSL cert which is working just fine. I have setup the redirect.php page in /var/www/html/ to take any request from www.domainX.com/config to the host server domain through an SSL connection - which is working fine. I have also customized the index.html login page under DA (e.g. /usr/local/directadmin/data/templates/) to include two images - Similar to forum user "skruf's" (a.k.a. David :)) post HERE.

Everything redirects fine in both Firefox and IE, however, in IE the images do not appear when the page loads (???).

David's Login

My Redirected Login

I haven't changed the Apache alias setting in httpd.conf from the default DA install. I HAVE changed the redirect.php to the following:

<? header("Location: https://".$_SERVER['HTTP_HOST'].":2222"); ?>

Changed to:

<? header("Location: https://server1.m2technology.com:2222"); ?>

Can someone click on my link above in IE to see if they experience the same thing? Any suggestions as to why the images are not showing in IE when the page first loads?

If you right click on the image placeholder after the page loads and select "show image" - no problem.

I REALLY appreciate any help with this one - thank you tremendously in advance!

Michael
 
Both work for me in firefox.

In IE it works sporadically as you said for me as well. (right clicking, show picture works)

Can you attach the files you modified for further investigation?

Why did you change the redirect in redirect.php?
 
Last edited:
Hi Jon - thanks for your reply!

I have attached the files that you mentioned:

/var/www/html/redirect.php

/usr/local/directadmin/data/templates/login.html

I changed the redirect.php page so that any user logging in to DA through their domain name will be redirected to the host server domain through https:

http://www. userdomain.com/config --> https://server1.hostserver.com:2222

I believe this is the correct way to use the host server SSL cert for DA logins, however, maybe I am mistaken.

Is there a better way to make the redirect to the host server? Do you think this may be the issue?

Thanks again for taking the time to help me with this!

Michael
 

Attachments

Hello,

The issue may be with the difference in ca root certificates. It's possible IE trusts the Comodo one blindly, so it works no questions asked. The equifax one may require an extra "who is this" on the part of IE, coupled with the fact that the certificates are being provided by 2 different daemons, causes IE to flake out.

Just for kicks, you could try setting up DA to port forward though apache instead (and use DA SSL=0, but use https in apache):
http://help.directadmin.com/item.php?id=84
(set port 443, with certificates instead)
Just to see if that makes it work. (just temporary for testing)

John
 
Hey Thanks John for your email and suggestions! I will give the https a trial for testing to see what I can do.

As always - your help is certainly appreciated :).

Michael
 
If anyone can verify that the problem is indeed the cert, let me know and I'll try to find someone at GeoTrust to look at the issue.

Jeff
 
I'm guessing the certificate itself is fine, but the fact that 2 different ports are in use would likely be an assumption that the IE developers never considered... but I'd still curious to know what the difference is between them.

John
 
This has been an interesting issue (?!?! :) ). I definitely think my problem has something to do with IE, the SSL Cert, and working with both https/2222. As I mentioned I have no problems at all with Firefox/Mozilla (haven't tried Opera or any others). In the end I was able to find a "solution" based on some of the suggestions that John gave me.

Understanding that IE must be "missing a beat" when it comes to the 2 port issue, John suggested that I try a test run with DA over https/apache. Rather than go the full route (I just upgraded Perl last night and didn't feel like fighting with Apache again :D ), I created a login page in /var/www/html/. On the login page I added the DA login form with an https redirect at the top of the page (for any clientX.com/config redirection to the host server). I then changed the redirect in httpd.conf (from redirect.php) to the new login page.

As it currently works, any user request to clientX/config is redirected to an https connection through the host server to the login page - images load fine (not using port 2222 yet, only https) . After the user logs in (using form action over https://) DA takes over, redirecting to port https/port 2222. When the user is finished working and logs out, they are then taken to the default login.html page in /usr/local/directadmin/data/templates - which at this point the images are loaded in the browser's cache (from the initial login) - problem solved!

I've scratched my head for a while with this one and am happy to find a solution. I am not certain how to go about verifying the problem as being the result of the Cert...but from my solution it definitely appears to be the case.

Would there be that much of a discrepency between a Comodo and GeoTrust cert?

(Thanks again John & Jeff for your ideas!)

Michael
 
Interesting indeed.

It might be a good idea for me to add the ability to host images for logins pages *through* DA, so IE wouldn't hiccup on the issue.

:)

John
 
:D That would be great! However, I am leaning towards it being a problem with the GeoTrust cert - only because David's Login images show just fine with a Comodo cert.

Thanks again John!
 
But you haven't tried with a GeoTrust cert on your server.

I don't know if you can get a free trial of the higher-priced GeoTrust certs or not. You can get a free trial of the RapidSSL certs, but since they use a different root, I'm not sure if that would prove anything.

You can get a free trial of the Comodo cert if you want.

So you can do some testing.

If youl try moving certs around, be sure to save all the files from the old cert or you'll have to repurchase them when you try to replace them back on your server.

Jeff
 
But you haven't tried with a GeoTrust cert on your server.
Click to expand...

Hi Jeff - Do you mean the SSL cert I am using? I did purchase the cert from EV1 as a GeoTrust QuickSSL cert and was taken to the GeoTrust website for activation/confirmation. However, I also noticed that it is signed by Equifax (???). Does this mean that it is not a "true" GeoTrust cert?

Michael
 
Equifax owns GeoTrust. It is a GeoTrust cert.

I'm sorry; I should have written that David hasn't tried with a GeoTrust cert on his server.

The only way we'll know if the cert is a difference is if you try with a Comodo cert and David tries with a GeoTrust cert.

I know the Comodo cert and the GeoTrust RapidSSL Certificates both offer free trials; I don't know if you can get a trial of the GeoTrust QuickSSL cert.

Jeff
 
You must log in or register to reply here.
Back
Top