[Solved] Can I use my mail.domain.ca domain for email when I haven't resolved the blacklist?

[industry]

PARTIALLY SOLVED:  I found the webmail access.  I'm still curious of the danger of setting up my email client without SSL security while I await my removal from the blacklists.

 

 

Pardon my ignorance.

 

I think I've done what I can do.  I've done the google "proof of ownership" thing and requested a review now that my domains - www.industryus.ca, industryus.ca, mail.industryus.ca - are setup under my new account and I've set up my email addresses.  

 

I can't get a CRT while the sites are still blacklisted but is there a way to use the CPanel webmail or something to send and receive with my industryus.ca domain?

 

If I've understood the direction and help from this forum, now that my domains are setup people will not be getting errors saying their message did not come through.  However, I'm not sure if/how to set up my client prior to having an SSL certificate to use.  I'm freaking out at the notion of simply not knowing what messages are coming my way for the potential 72 hours it will take to clear up the blacklist of my industryus.ca domain.  

 

Thanks, in advance.

[wolstech]

I just manually ran AutoSSL on your domain, it validated everything except the domains you normally can't get one for (webdisk and cpanel), so you're now in line for certs to be issued (the deceptive page is actually produced by Chrome itself, so it's irrelevant when you access the domain with literally anything else, like the script used by AutoSSL).

 

The server's a bit backlogged on them due to the high number of replacement accounts being set up due to the hack, but they'll come in eventually (there's a few from yesterday still in the queue).

[industry]

Thanks, for this and all of the other help I've recieved in the last few days.  It is greatly appreciated.

[industry]

Hello, I'm still not seeing the certs come through.  Is it worrthwhile for me to do it manually through zerossl?  I don't want to start anything that might cause an issue for your guys if the process gets underway while I'm in the middle of doing it myself.  

 

if you could let me know, that would be great.

 

Thanks, again,

Scott.

[industry]

Hello, just checking that nothing has gone wrong with the AutoSSL setup.  Still no certs. 

[wolstech]

Weird. Lets have Krydos look at this again. Your certs are all stuck in the queue still.

[Krydos]

11:35:27 AM WARN “industryus.ca” failed its authorization because of an error: "industryus.ca" was considered an unsafe domain by a third-party API (The client lacks sufficient authorization (urn:acme:error:unauthorized))

Looks like you need to get removed from the google blacklist before AutoSSL will work. You can try https://wiki.helionet.org/Installing_a_Let%27s_Encrypt_SSL_Certificate but it might give the same error.

[industry]

Thanks.  From what I can tell, I've done what I need to do from the google blacklist side.  I guess I just continue to wait.  Should I re-submit something to you when it looks like that is done?  Also, I now appear to not even have the "self-signed" certs on those domains.  

 

Thanks, again.  

Edited July 31, 2018 by industry

[industry]

Noob, here.  The Google Console window, if I'm reading it correctly, seems to suggest that google has declared my site dangerous "Today" ( the right-hand column ).  Is it possible there is still some offending code on my new site ( I haven't added anything beyond the files for verification of ownership but I'm out of ideas )?

[wolstech]

You need to have some content on the site for them to evaluate it. I see an empty directory listing. Empty directory listings don't give them any information to show it is or is not dangerous, so they can't make a decision either way.

 

You need to set up an actual website so they can see the content you're offering.

[industry]

Okay, thanks.  

[industry]

That seemed to do it.  thanks, again.  

[wolstech]

Yeah, google likes to see real content for just about everything they do. Now that you're off the blacklist, the autossl should be able to actually get you certs when it runs next.

[Krydos]

It's working now https://www.sslshopper.com/ssl-checker.html#hostname=industryus.ca