Disappointed Cat

WebUI inner workings and certificate

Recommended Posts

Is there a way to change the certificate used by the webui? Is it hardcoded into the binary?

I don't mind if it generates it's own but I wan't it to be singned by my root CA.

I'm also interested in the inner workings of the webui. For example I assume it loads the files from the webui.zip and runs a micro webserver. Can I change things in the zip file and will it be overridden on restart or an update?

Also a small feature request: It would be nice if there'd be an option to force HTTPS and using a hash instead of clear text for passwords but I'm sure this was mentioned before.

Share this post


Link to post
Share on other sites

You can change the webui.zip, but you must do so after BTSync has started up and before the first web client connects.

The certificate is stored in the settings.dat file. As this is a bencode format file you can probably change it (delete the ".fileguard" tag) using a normal bencode editor when btsync isn't running. The format of the key looks standard to me.

Actually, I didn't know it could even do SSL, It doesn't seem to be in the user guide, I'm using "stunnel" to encrypt the connection.

Share this post


Link to post
Share on other sites

Anyone know where I might look to see why I can't seem to connect to the web UI via SSL? In Safari it just hangs, and in Firefox on Ubuntu I get the following when trying to connect to https://192.168.30.95:8888


Secure Connection Failed


An error occurred during a connection to 192.168.30.95:8888.
You have received an invalid certificate. Please contact the server administrator or email correspondent and give them the following information:
Your certificate contains the same serial number as another certificate issued by the certificate authority. Please get a new certificate containing a unique serial number.
(Error code: sec_error_reused_issuer_and_serial)

Connecting via http (http://192.168.30.95:8888) works just fine.

Share this post


Link to post
Share on other sites

Sounds like you saved the certificate in the browser then the certificate was changed in the BTSync webgui. BUT the "serial number" has been hardcoded instead of being sequential or random.

Hopefully this is BTSync's normal password and you just deleted the settings.dat file so now you have to delete the old certificate from your browser.

Share this post


Link to post
Share on other sites

Ok thx. I'm going to try removing and re-installing Firefox on Ubuntu. If that doesn't help, I'll create a completely new VM and install Firefox there.

Share this post


Link to post
Share on other sites

Thanks! The re-install ended up fixing it for Firefox on Ubuntu. Now I'll get to googling how to create a new safari profile on my mac

Edit: Spoke too soon. SSL was working fantastic on my home machine with BitTorrent Sync gui and Firefox, so I attempted to load up my server's gui with SSL and got the same error. Seems like Firefox is complaining that there are two sites using the same certificate (same serial # of 00)?? Has anyone successfully used SSL with multiple Sync web guis in Firefox? I'm sure there must be a security setting I can adjust somewhere to tell Firefox to ignore this?

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.