Menu

#64 After installation of ]po[ on VPS hosting getting it classified as dangerous by google

v1.0_(example)
open
nobody
Site tagged as dangerous (1) google safety (1) unsafe site (1) vps installation (1)
5
2019-08-26
2019-08-24
Shachi
No

Hello
I have installed the ]projectopen[ on VPS hosting Ubuntu 16.04. The site is launching but everytime its showing the site is unsafe to access.

Even the browsing has labeled the site as dangerous. The hosting team tells me that its issue with the website files.

But I have installed anything outside the ]po[ installation process. Can you please let me know how to resolve this

Regards
Shachi

Related

Support Requests: #64

Discussion

  • Frank Bergmann

    Frank Bergmann - 2019-08-24

    First, please specifiy exactly how the site is "classified" as dangerous. There many many ways.

    One simple option is that you only use HTTP, instead of HTTPS. Google would rate this site "unsafe" (but not "phishing", for example). In this case please install NGINX as a reverse proxy that handles HTTPS. You can search for "https nginx site:project-open.com" on Google for more information on this. Or just follow some tutorial on Let's Encrypt.

    Maybe the last user of our IP address hosted malware? Then maybe request a review via "Google Search Console" (after installing HTTPS). Please see the respective tutorials, this is outside the scope of this forum.

    Cheers
    Frank

     

    • Shachi

      Shachi - 2019-08-26

      Hello Frank
      I have set it up as HTTP and not HTTPS. Google calls it phishing and
      indicates that there are ads part of the application which might capture
      sensitive information

      I tried the following
      https://transparencyreport.google.com/safe-browsing/search?hl=en2

      and below is the message. The hosting company is saying its nothing to
      with their hosting but the application that is deployed which ]project
      open[ (only this is there on the server). I was wondering if we need to
      disable anything in the application which will fix the issue without
      getting into HTTPS.

      [image: image.png]

      Regards
      Shachi

      On Sat, Aug 24, 2019 at 4:11 PM Frank Bergmann fraber@users.sourceforge.net
      wrote:

      First, please specifiy exactly how the site is "classified" as dangerous.
      There many many ways.

      One simple option is that you only use HTTP, instead of HTTPS. Google
      would rate this site "unsafe" (but not "phishing", for example). In this
      case please install NGINX as a reverse proxy that handles HTTPS. You can
      search for "https nginx site:project-open.com" on Google for more
      information on this. Or just follow some tutorial on Let's Encrypt.

      Maybe the last user of our IP address hosted malware? Then maybe request a
      review via "Google Search Console" (after installing HTTPS). Please see the
      respective tutorials, this is outside the scope of this forum.

      Cheers
      Frank

      Status: open
      Group: v1.0_(example)
      Labels: Site tagged as dangerous google safety unsafe site vps
      installation
      Created: Sat Aug 24, 2019 07:34 AM UTC by Shachi
      Last Updated: Sat Aug 24, 2019 07:34 AM UTC
      Owner: nobody

      Hello
      I have installed the ]projectopen[ on VPS hosting Ubuntu 16.04. The site
      is launching but everytime its showing the site is unsafe to access.

      Even the browsing has labeled the site as dangerous. The hosting team
      tells me that its issue with the website files.

      But I have installed anything outside the ]po[ installation process. Can
      you please let me know how to resolve this

      Regards
      Shachi

      Sent from sourceforge.net because you indicated interest in
      https://sourceforge.net/p/project-open/support-requests/64/

      To unsubscribe from further messages, please visit
      https://sourceforge.net/auth/subscriptions/

       

      Related

      Support Requests: #64

      alternate
      Thumbnail
      image.png

      • Frank Bergmann

        Frank Bergmann - 2019-08-26

        Hi,

        I consider this support request as closed. Please install HTTPS. It is correct that ]po[ expects a password, and that passwords should no go through HTTP. Please add an automatic redirect from HTTP to HTTPS. Please search on www.project-open.com for more information on this.

        Cheers
        Frank

         

  • Frank Bergmann

    Frank Bergmann - 2019-08-24

    Please contact info@project-open.com if you need professional support. I believe we could install HTTPS on NGIX, get a certificate from Let's Encrypt and automate certificate renewal in about 3 hours of work. Scheduled support is EUR 150/hour. You would have to provide us with SSH access to your VPS.

    Cheers
    Frank

     

Anonymous
Anonymous

Add attachments
Cancel