Picotry insecure connection

in06khattab · Post by **in06khattab** » 26 Mar 2024, 13:37

When I access pictory, it redirects me to http://192.168.255.1:41080/insecure_connection.html

It then redirects to this webpage which cannot be reached
https://192.168.255.1:41443/

I noticed the port changed from 41080 to 41443

I have recently upgraded from buster to bullseye which I know is not recommended. I was wondering if you had any ideas how to fix it?

nicolaiB · Post by **nicolaiB** » 26 Mar 2024, 14:23

You are probably missing the correct webserver configuration:

eg. /etc/apache2/sites-enabled/revpi-ssl-site.conf

Code: Select all

<IfModule mod_ssl.c>
        Listen 41443
        <VirtualHost _default_:41443>
                ServerAdmin webmaster@localhost

                DocumentRoot /var/www/revpi

                ErrorLog ${APACHE_LOG_DIR}/revpi/error.log
                CustomLog ${APACHE_LOG_DIR}/revpi/access.log combined

                # Include all files and directories for webstatus and pictory to allow access to
                php_admin_value open_basedir "\
/etc/timezone:\
/usr/bin/date:\
/usr/bin/piControlReset:\
/usr/bin/sudo:\
/usr/bin/uptime:\
/usr/sbin/piSerial:\
/var/www/revpi"

                SSLEngine on

                SSLCertificateFile      /etc/ssl/certs/revpi-self-signed.pem
                SSLCertificateKeyFile   /etc/ssl/private/revpi-self-signed.key

                <FilesMatch "\.(cgi|shtml|phtml|php)$">
                        SSLOptions +StdEnvVars
                </FilesMatch>

                <Directory /usr/lib/cgi-bin>
                        SSLOptions +StdEnvVars
                </Directory>

        </VirtualHost>
</IfModule>

# vim: syntax=apache ts=4 sw=4 sts=4 sr noet

in06khattab · Post by **in06khattab** » 26 Mar 2024, 14:26

I have progressed by following the instructions here https://kunbus-gmbh.atlassian.net/wiki/ ... ullseye%3F and here https://kunbus-gmbh.atlassian.net/wiki/ ... Stretch%3F

I can now access pictory. I now get a certificate error. Is that expected?

I still see this website:

Then it redirects to here:

Then I see this:

Is this expected?

in06khattab · Post by **in06khattab** » 26 Mar 2024, 14:28

Code: Select all

cat  /etc/apache2/sites-enabled/revpi-ssl-site.conf
<IfModule mod_ssl.c>
        Listen 41443
        <VirtualHost _default_:41443>
                ServerAdmin webmaster@localhost

                DocumentRoot /var/www/revpi

                ErrorLog ${APACHE_LOG_DIR}/revpi/error.log
                CustomLog ${APACHE_LOG_DIR}/revpi/access.log combined

                # Include all files and directories for webstatus and pictory to allow access to
                php_admin_value open_basedir "\
/etc/timezone:\
/usr/bin/date:\
/usr/bin/piControlReset:\
/usr/bin/sudo:\
/usr/bin/uptime:\
/usr/sbin/piSerial:\
/var/www/revpi"

                SSLEngine on

                SSLCertificateFile      /etc/ssl/certs/revpi-self-signed.pem
                SSLCertificateKeyFile   /etc/ssl/private/revpi-self-signed.key

                <FilesMatch "\.(cgi|shtml|phtml|php)$">
                        SSLOptions +StdEnvVars
                </FilesMatch>

                <Directory /usr/lib/cgi-bin>
                        SSLOptions +StdEnvVars
                </Directory>

        </VirtualHost>
</IfModule>

# vim: syntax=apache ts=4 sw=4 sts=4 sr noet

It is the same as yours.

in06khattab · Post by **in06khattab** » 26 Mar 2024, 14:30

Now I see this, but it all seems ok