Search the Community

Showing results for tags 'ssl'.



More search options

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


Forums

  • Resilio Sync
    • Sync General Discussion
    • Sync Troubleshooting
    • Sync for NAS (Network Attached Storage)
    • Sync Stories
    • Developers
    • Feature Requests

Find results in...

Find results that contain...


Date Created

  • Start

    End


Last Updated

  • Start

    End


Filter by number of...

Joined

  • Start

    End


Group


AIM


MSN


Website URL


ICQ


Yahoo


Jabber


Skype


Location


Interests

Found 4 results

  1. Hi - so I've configured the Sync GUI to use a self signed certificate over HTTPS, but am running into two issues: 1) Even when setting the force_https setting as "true" in the Sync config file, I can still browse to the GUI over normal HTTP. For example I type http://192.168.1.1:8888/gui and get prompted for login/password. I'd like all login requests to go over HTTPS for security reasons. 2) The self signed certificate I generated is signed using SHA2, but when I login to the Sync GUI and view the certificate Google Chrome says the cert is insecure because it is signed using SHA1. It appears my cert is not used even though it's defined in the configuration file. Here is SSL info from my configuration file: /* ssl configuration */ ,"force_https" : true // disable http ,"ssl_certificate" : "/home/ssl/sync.crt" ,"ssl_private_key" : "/home/ssl/sync.key" Sync is installed on Ubuntu 16.04 on ARM architecture. I appreciate any help with either question above. Thanks!
  2. Hi there.... Do anyone in here know how HTTPS should be configured for the BitTorrent WebUI? For tightened security that would be really great. Kind regards.
  3. Hi, why isn't Perfect Forward Secrecy (http://en.wikipedia.org/wiki/Perfect_Forward_Secrecy) implemented yet? The discussions about this security feature are long enough ongoing to recognize fmpov. Regardsb
  4. Is there really no way to enable/force the webui of the linux btsync to use https/ssl? This is a gaping security hole for a software trying to take pride in security and privacy. That might be fine for communication over a private, trusted network but it's wholly unacceptable for communication over the public internet. I have a remote server I've been using for offsite backup and I've now realized that the credentials to the webui and all my 'secrets' have been transmitted in plaintext on the open internet. Great. As a workaround I can change all my secrets, disable the webui, and exclusively do remote configuration on a config file via ssh, but still... wtf?