Search the Community

Hi, I am running Sync on a NAS and on a Linux server. I would like to use a valid SSL certificate on both instances. Both systems have automated certificate renewal facilities, but of course they do not know anything about my running Sync instances and the certificate is owned by root in a different folder. First I thought, it might be a good idea to change certificate rights and to point sync.conf to the certificate - but this would yield a security issue. The next idea is to make a copy of the certificate into the folder, where the sync executable resides and to change the ownership. This can be done with a daily cron job. I presume that there is no option to get hold of the "original" certificate without having a security issue and that there is no clever built-in Let's Encrypt functionality in Sync? Any other suggestions?

On Ubuntu Server 16.04.1 LTS (Xenial Xerus) I've installed Resilio Sync and started by: systemctl enable resilio-sync adjusted the /etc/resilio-sync/config.json file: { "listening_port" : 0, "storage_path" : "/var/lib/resilio-sync/", "pid_file" : "/var/run/resilio-sync/sync.pid", "agree_to_EULA": "yes", "webui" : { "listen" : "0.0.0.0:999", "login" : "xxx", "password_hash" : "xxx" } } restarted the service, and everything works fine, on URL http://196.168.666.666:999/gui. Next, I'm creating a certificate in /etc/resilio-sync/ folder: openssl req -x509 -nodes -days 9999 -newkey rsa:2048 -keyout sync.key -out sync.crt and updating config.json: { "listening_port" : 0, "storage_path" : "/var/lib/resilio-sync/", "pid_file" : "/var/run/resilio-sync/sync.pid", "agree_to_EULA": "yes", "webui" : { "listen" : "0.0.0.0:999", "login" : "xxx", "password_hash" : "xxx" ,"force_https" : true ,"ssl_certificate" : "/etc/resilio-sync/sync.crt" ,"ssl_private_key" : "/etc/resilio-sync/sync.key" } } Unfortunately, now when I access https://196.168.666.666:999/gui the connection fails. Any idea what may be wrong?

I works behind proxy that allow connect only to 80 (http) and 443 (https) ports. I see that https://config.resilio.com/sync.conf does not contain any tracker or relay with http (80) or https (443) ports. How can I connect to my shares at work with such proxy?

Is there really no way to enable/force the webui of the linux btsync to use https/ssl? This is a gaping security hole for a software trying to take pride in security and privacy. That might be fine for communication over a private, trusted network but it's wholly unacceptable for communication over the public internet. I have a remote server I've been using for offsite backup and I've now realized that the credentials to the webui and all my 'secrets' have been transmitted in plaintext on the open internet. Great. As a workaround I can change all my secrets, disable the webui, and exclusively do remote configuration on a config file via ssh, but still... wtf?

Hi there.... Do anyone in here know how HTTPS should be configured for the BitTorrent WebUI? For tightened security that would be really great. Kind regards.

I have bittorrent sync running on a remote linux server (essentially replacing dropbox which is great)! What I am trying to set up is a https connection to send the login password encrypted. Unfortunately, I don't really know how to do this (my server supports https, that I know). Do I have to define a specific listening port in the conf.sync or how do I do this?

Hi! I have two Ubuntu machines synced, configuration is in the browser. It would be very convenient if it was possible to redirect the configuration (stanard on localhost:8888/gui) to an https-adress, so that a secure external connection is possible. I don't have much experience with Apache etc., so here my question: could this be done with Apache? And if so: how? Many thanks for every hint!