mch Posted September 11, 2014 Posted September 11, 2014 Hello, I access RS web interface remotely from the internet. Could be this connection protected with ssl, so may I use https ? How to setup to work over https? Thanks
goscho Posted September 11, 2014 Posted September 11, 2014 Hi, what about creating a VPN to your network? So you can login to the RS using http and it's as secure as with https.
Tjod Posted September 11, 2014 Posted September 11, 2014 For https you would need to run a different Web server in you network as reverse proxy. If you don't know how to configure a web server this is not a solution for you.
mch Posted September 15, 2014 Author Posted September 15, 2014 VPN is better solution. May I know why the RS management could not be https protected?
mch Posted September 28, 2014 Author Posted September 28, 2014 May I know why it is not technically possible?
Tjod Posted September 28, 2014 Posted September 28, 2014 It takes time to implement that and other things have a higher priority. And for real security every user would need a "official" certificate for the ddns name. Or need to know how to import or validate self signed certificates on all clients (pc at work etc.). Without that https helps only against passive attacks. Active MITM attacks would still be possible.
Recommended Posts