Secure Sockets Layer (SSL) is a protocol that provides communication security over the network. SSL is useful when you have sensitive information, such as login credentials or credit card information, transferred over the network.

    HTTPS is a protocol for secure communication over a computer network which is widely used on the Internet. HTTPS consists of communication over Hypertext Transfer Protocol (HTTP) within a connection encrypted by Transport Layer Security or its predecessor, Secure Sockets Layer. The main motivation for HTTPS is authentication of the visited website and protection of the privacy and integrity of the exchanged data.

    KUSoftas CMS have implemented SSL into the core of backend software and does not require any additional SSL plugins to be separate installed. KUSoftas CMS have following SSL usage options:

    • All site pages forced to be accessed using HTTPS only. This option can be switched on using CMS Tool Setup under CMS tab. Under CMS tab mark "Use HTTPS only" option.
    • Allow separate page to be accessed using HTTP only, HTTPS only or in both ways. This option can be switched on using CMS Tool Page. Select option under General data tab using "HyperText Transfer Protocol" selector while editing page.
    • Separate page can be redirected from HTTP to HTTPS or vice versa. This option can be selected with mark "Redirect other protocol to this" when HTTP or HTTPS is selected for page (see above).
    • Separate page can be redirect into another URL using HTTP or HTTPS. This option can be switched on using CMS Tool Page. Mark "Redirect to URL", enter URL and mark "HTTPS" under General data tab while editing page.
    • Page URL aliases can be entered with specified protocol: HTTP, HTTPS or both. This can be done using CMS Tool Page under Redirect from URL tab while editing page.
    • Menu tree element can be forced to use HTTPS if corresponding page supports both protocols. This can be done using CMS Tool Menu under General data tab while editing menu or language.
    • News item view can be forced to use HTTPS. This can be done using CMS Plugin News manager under Config, Base URL tab. Set SSL to yes for corresponding base URL.

    Site must be configured to be used with SSL. Some instructions for Apache virtual host configuration for SSL usage:

    • Purchase / get SSL certificates.
    • Save the primary and intermediate certificates to a folder on the server with the private key.
    • Find yor virtual host configuration under /etc/apache2.
    • If you need your site to be accessible through both secure (https) and non-secure (http) connections, you will need a virtual host for each type of connection. Make a copy of the existing non-secure virtual host and change the port from port 80 to 443.
    • Add the lines below: <virtualhost *:443=""> DocumentRoot /path-to-your-site-root ServerName your-site-name SSLEngine on SSLCertificateFile /path-to-your-primary.crt SSLCertificateKeyFile /path-to-your-private.key SSLCertificateChainFile /path-to-your-intermediate.crt ... other configuration lines ... </virtualhost>
    • Save the changes and exit the text editor.
    • Restart your Apache web server.

    You need to upload your sertificates and switch on SSL usage with DirectAdmin tool when you are using shared hosting services.

    Vulnerability Scanner