Webiopi over HTTPS
702 views
Skip to first unread message
Chuck Spencer
Feb 19, 2014, 10:44:17 AM2/19/14
to web...@googlegroups.com
I'm considering exposing my Webiopi's web service to the public internet. I'd prefer to run the traffic via HTTPS rather than plain HTTP. Any advice on how to configure Webiopi to do this?
I fear my google searches on this have been fruitless, so forgive me if I've missed something obvious. Thanks in advance for any advice!
- Chuck
Andreas Riegg
Feb 20, 2014, 12:12:35 PM2/20/14
to web...@googlegroups.com
Chuck,
short answer, HTTPS is NOT possible out of the box with the current version of WebIOPi.
You find it on the ROADMAP in the category medium priority.
Andreas
short answer, HTTPS is NOT possible out of the box with the current version of WebIOPi.
You find it on the ROADMAP in the category medium priority.
Andreas
Adrian Nicolaiev
Feb 20, 2014, 1:58:44 PM2/20/14
to web...@googlegroups.com
Chuck Spencer
Feb 20, 2014, 2:11:49 PM2/20/14
to web...@googlegroups.com
Thanks for the quick response. On a related question - is it possible to run two instances of Webiopi on a single Raspberry Pi? There are features of my project that are sensitive, and some that are not. I'd like to cordon off the sensitive features to a service that is only exposed on the LAN and not the internet. Ideally I'd do this with a second instance of Webiopi on the same unit - but if necessary I'll set up a separate Raspberry Pi just for that.
Eric PTAK
Feb 20, 2014, 2:55:46 PM2/20/14
to web...@googlegroups.com
Chuck, you can launch two differents webiopi by setup differents ports in their configuration.
HTTPS is not natively supported yet, but can be provided using apache, nginx, haproxy, or anything to make reverse proxy.
Adrian, your link is a short and nice resume of the situation, but there is much things to consider.
--
You received this message because you are subscribed to the Google Groups "WebIOPi" group.
To unsubscribe from this group and stop receiving emails from it, send an email to webiopi+u...@googlegroups.com.
For more options, visit https://groups.google.com/groups/opt_out.
Adrian Nicolaiev
Feb 20, 2014, 4:16:36 PM2/20/14
to web...@googlegroups.com
HTTPS is not natively supported yet, but can be provided using apache, nginx, haproxy, or anything to make reverse proxy.
Secure Webiopi is a nice example:
I didn't mention before, supposing someone would.
Adrian, your link is a short and nice resume of the situation, but there is much things to consider
Indeed. Just found 98 WebIOPi Internet sites. Owners should be aware of http://shodanhq.com/search?q=webiopi
Related to banner vulnerability, for example, recent "realm" fix (Revision 1423 issue #69) seems that wont be enough. Server Information (WebIOPi/0.6.0/Python3.2) will still be there.
Reply all
Reply to author
Forward
0 new messages