Configure Let’s Encrypt SSL

Install & Troubleshooting after installing your certificate via cPanel

SSL Logo

Go to cPanel and Click on Let’s Encrypt Icon,
Make sure you have certificate installed, If none. you can issue Let’s Encrypt certificate by clicking on the button Issue

Why there is no padlock ater activating Let’s Encrypt SSL even with https://

Please make sure there is no mixed content in your web site source http and https source
Check source for https and http reference for image and image from other sources
You can use view source tab in your browser.

Detailed query can be conducted via these web sites to check that your site source

1) Why there is no padlock ater activating Let’s Encrypt SSL even with https://
Please make sure there is no mixed content in your web site source
Check source for https and http reference for image and image from other sources
refer

https://www.whynopadlock.com/
Check mixed content error
https://www.jitbit.com/sslcheck/

Correct the codes by removing http  – change to https

 

2)You can use .htaccess to force SSL

RewriteEngine On
RewriteCond %{HTTPS} !=on
RewriteRule ^(.*)$ https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]

3) For WordPress blog
Use plugin if method above yield no result.

Use plugin  i.e
https://wordpress.org/plugins/really-simple-ssl/
or
https://wordpress.org/plugins/wp-force-ssl/

Webmail

Webmail merupakan email berasaskan laman sesawang atau dikenali sebagai ‘web-based email’ yang boleh dilayari melalui suatu program atau ‘browser’ seperti ‘Firefox’ yang dibangunkan oleh ‘Mozilla’ , ‘internet explorer oleh Microsoft atau ‘Chrome’ oleh Google. Ia boleh dilayari dari mana-mana saja selagi ada kemudahan internet melalui pautan masing-masing dengan memasukkan ID pengguna dan kata laluan. Ia juga tidak memerlukan aplikasi untuk memuat turun email.

Hotmail , yahoo mail, gmail adalah contoh terbaik ‘webmail’ percuma. Tetapi tidak sesuai dijadikan email perniagaan. Untuk itu, ia memerlukan domain sendiri dan hosting berbayar. Pautan webmail bagi hosting berbayar akan menggunakan nama domain sebagai pautan sendiri seperti berikut webmail.domainsendiri.com. Bagi yang mempunyai ‘hosting’ sendiri yang berbayar aplikasi popular seperti platform CPanel menawarkan 3 jenis antara muka yang berbeza seperti ‘Horde’ , Squirrelmail dan Roundcube.

Read More

Servis Privasi Nama Domain

Mengapa Servis Privasi Nama Domain (Privacy Protection) penting untuk nama domain anda?

Tahukah anda bahawa email dan alamat anda terdedah pada umum jika anda mendaftar nama domain tanpa Privacy Protection?
Anda boleh lakukan carian whois untuk mengetahui pemilik dan pentadbir sesuatu nama domain.
Contoh carian WHOIS awam https://www.whois.com/whois/

Domain digunakan untuk mewakili nombor IP seperti contoh google.com.my = 172.217.161.131,
Whois database adalah penting untuk akauntabiliti kandungan dan maklumat pentadbir sesuatu nama domain.
Malah pihak ICANN mewajibkan nama WHOIS dikemaskini selalu supaya semua pihak dapat menghubungi pentadbir atau pemilik nama domain jika ada masalah SPAM,  masalah rangkaian (network) dan juga kandungan. Pihak ICANN juga berhak menggantung nama domain jika email pemilik atau pentadbir tidak dapat di hubungi atau tidak sah dalam masa 2 minggu.

Carian awam atau Public Whois kini telah disalahgunakan oleh pihak yang tidak bertanggungjawab untuk menghantar SPAM, marketing email juga menipu pemilik naif dalam pelbagai cara.

Anda mungkin terkejut apabila selepas mendaftar nama domain, email anda atau telefon anda di hujani dengan mesej marketing atau Spam, ini kerana data anda dimasukkan dalam carian Whois database domain baru yang di daftarkan.

 

Dengan menggunakan servis Privacy Protection – Maklumat anda diwakilkan oleh proksi dan tidak terdedah pada awam.Ini dapat mengelakkan masalah spam, email marketing dan juga penipuan (phishing)
Privacy protection hanya boleh digunakan untuk domain domain level utama seperti .com/net/org/info. Domain-domain  negara seperti .my masih belum ada penyelesaian seperti domain level utama buat masa ini.

Mynic .my Technical Glitch

On the eve 16th of June 2018, Mynic DNS servers reportedly down due to issue with DNSSEC. The downtime apparently occurred during Hari Raya holiday – where most people were on Hari Raya holiday.
The issue was by a glitch with Mynic DNSSEC key while pushing zone information to IANA servers.1
The restoration was swift but DNS take time to propagate all over the internet. 2

Only one of our customers from oil and gas industries had difficulty sending emails from their vessels out in open sea via sat comm. We instructed them to switch to another DNS resolver to overcome this issue. (after mynic rectified  the problem)

Mynic LogoDNSSEC Info

Faster DNS Query with 1.1.1.1

1.1.1.1 is the new public DNS resolver created by  Cloulflare and Apnic

Cloudflare runs one of the world’s largest, fastest networks.
APNIC is a non-profit organization managing IP address allocation for the Asia Pacific and Oceania regions.

What is a DNS resolver?

When a user requests to visit a web application like facebook.com, the user’s computer needs to know what server to connect to so that it can load the application. Computers don’t initially have the necessary information to do this ”name to address” translation, so they ask a specialized server to do it for them.

This specialized server is called a DNS recursive resolver. The resolver’s job is to find the address for a given name, like 2400:cb00:2048:1::c629:d7a2 for cloudflare.com, and return it to the computer that asked for it.

How to Set Up on Your PC

  1. Click on the Start menu, then click on Control Panel.
  2. Click on Network and Internet.
  3. Click on Change Adapter Settings.
  4. Right click on the Wi-Fi network you are connected to, then click Properties.
  5. Select Internet Protocol Version 4 (or Version 6 if desired).
  6. Click Properties.
  7. Write down any existing DNS server entries for future reference.
  8. Click Use The Following DNS Server Addresses.
  9. Replace those addresses with the 1.1.1.1 DNS addresses:
    • For IPv4: 1.1.1.1 and 1.0.0.1
    • For IPv6: 2606:4700:4700::1111 and 2606:4700:4700::1001
  10. Click OK, then Close.
  11. Restart your browser.
  12. You’re all set! Your device now has faster, more private DNS servers

For me I would like to mix 1.1.1.1 and Google’s 8.8.8.8  for better reliability, in the case my our ISP could not reach 1.1.1.1 (Clouldflare’s network)

1.1.1.1 Comparison with other resolvers

Read More

Mynic Domains (.MY) New Selfcare Portal

Mynic – Malaysian registrar of .my domains has recently updated their domain control panel to enable user changing nameservers and contact info without using assigning contact code which was confusing for most.  The new selfcare portal is located at https://selfcare.ichoose.my/

If you need to access the old url in order to change invoicing party – Biller Code – Please login as Administrator of your domain name at
http://manage.mynic.my/ or  Domain Manager Panel

 

 

Mynic Selfcare Portal