Firefox v52.0 login warning message

Wayne Workman · Mar 11, 2017, 8:32 PM

I just started seeing this today when accessing my home fog server. Everything still works fine, just thought I’d share.

x23piracy · Mar 11, 2017, 4:28 PM

https://blog.mozilla.org/security/2017/01/20/communicating-the-dangers-of-non-secure-http/

enter about:config into the firefox address bar (confirm the info message in case it shows up) & search for the preference named security.insecure_field_warning.contextual.enabled. double-click it and change its value to false.

What about SSL support?

x23piracy · Mar 12, 2017, 3:25 AM

Hi,

what if i install certbot and create a ssl certificate and force http > https,
i guess this will mess everything up? What about Storage Nodes? @tom-elliott @george1421 @Wayne-Workman

The FOG Client is using its own certificate so that communication is separated from the webif itself but i really would like to know if this will work? Which Communication is been done between the FOG Server and its Storage Nodes over http?

Joe Schmitt · Mar 12, 2017, 5:03 PM

@x23piracy FOG 1.X already installs with https support (defaulting to an SSL key generated by your FOG Server CA). Just change the url in your address bar to https, and assuming you aren’t running a custom apache/nginx configuration you’re set.

x23piracy · Mar 12, 2017, 6:32 PM

@Joe-Schmitt when i try to access fog (ootb) via https i get:

Joe Schmitt · Mar 12, 2017, 7:15 PM

@x23piracy the default configuration / ssl cert is limited to just the IP of the fog server usually. You can edit the apache config / use your own certificate by using the config we make as a template.

Tom Elliott · Mar 12, 2017, 10:18 PM

@x23piracy When you run the installer, use the:

-S --force-https Force HTTPS redirect arugments with the installer.

So if you want https support, you would run your installer as:

./installfog.sh -yS

162

12.0k

17.3k

155.2k