« previous next »
Pages: 1 [2]

Author Topic: Secure outside access to orbiter - HTTPS or VPN?  (Read 6248 times)

purps

  • NEEDS to work for LinuxMCE
  • ***
  • Posts: 1402
  • If it ain't broke, tweak it
    • View Profile
Re: Secure outside access to orbiter - HTTPS or VPN?
« Reply #15 on: October 29, 2010, 05:06:14 pm »
Thank you so much for the help guys, that is all much clearer. I will idiot-proof the wiki page if I am successful.

Cheers,
Matt.
Logged
1004 RC :: looking good :: upgraded 01/04/2013
my setup :: http://wiki.linuxmce.org/index.php/User:Purps

pw44

  • Addicted
  • *
  • Posts: 666
    • View Profile
Re: Secure outside access to orbiter - HTTPS or VPN?
« Reply #16 on: October 29, 2010, 05:32:33 pm »
If the intention is outside access, there is no other way. If there's a fixed IP, then use it, but for most, dynamic IP is the rule, so DDNS is almost mandatory.
« Last Edit: October 30, 2010, 08:48:02 pm by pw44 »
Logged

wierdbeard65

  • Guru
  • ****
  • Posts: 449
    • View Profile
    • My Quest
Re: Secure outside access to orbiter - HTTPS or VPN?
« Reply #17 on: October 29, 2010, 06:15:26 pm »
Quote from: merkur2k on October 29, 2010, 04:38:24 pm
note that there is no hard rule that the fqdn in the cert matches the address you type in, you will just get a warning in the browser if it doesnt.
Be careful!

It all depends on the client in use - I have no way of knowing if the Touch Orbiter, for example, can cope with a certificate error. True, most Web Browsers will give you the option to ignore the error, but it's always preferable to avoid the errors coming up if possible - you never know what new features may be around the corner! ;)

For example, at work we teach the setting up of TLS/SRTP for Polycom SIP-based phones. In this case, a certificate subject mis-match simply stops the phone from registering......
Logged
Paul
If you have the time to help, please see where I have got to at: http://wiki.linuxmce.org/index.php/User:Wierdbeard65

purps

  • NEEDS to work for LinuxMCE
  • ***
  • Posts: 1402
  • If it ain't broke, tweak it
    • View Profile
Re: Secure outside access to orbiter - HTTPS or VPN?
« Reply #18 on: October 30, 2010, 07:23:00 pm »
Right, I've been through the wiki, which went like clockwork as far as I can tell.

However, when I point my phone browser towards "https://purps.dyndns-remote.com/LinuxMCE-admin/weborbiter.php" I'm asked if I want to accept the certificate, to which I say yes, but then I immediately get an error message "Web: Connection timeout" and that's that. Any suggestions?


FYI I added...

Code: [Select]
# NameVirtualHost *
<VirtualHost *:443>
        SSLEngine On

...to "/etc/apache2/sites-available/pluto443", is that correct? Wasn't sure if I should have added it to "/etc/apache2/sites-available/pluto" instead.


Also, does any outside access need to be enabled in LinuxMCE admin for this to work? I assume setting up HTTPS bypasses all of this?

Cheers,
Matt.

EDIT: Got it working, and with all outside access disabled. Not sure what the problem was, but I turned my phone off and on again, did a quick reload, and it worked.

Big thank you to all of you for your help, very pleased to have this sorted.
« Last Edit: October 30, 2010, 07:47:57 pm by purps »
Logged
1004 RC :: looking good :: upgraded 01/04/2013
my setup :: http://wiki.linuxmce.org/index.php/User:Purps
Pages: 1 [2]
« previous next »
 

Sitemap