Subsonic Forum

forum.subsonic.org
http://forum.subsonic.org/forum/

SSL with offical wildcard Certificate

http://forum.subsonic.org/forum/viewtopic.php?f=2&t=15676

Page 1 of 1

SSL with offical wildcard Certificate

PostPosted: Sun May 24, 2015 12:55 pm
by Harry61
Hello together,

i want to get subsonic on an centos VPS more secure.
i have a wildcard Certificate for my domain which i want t install and use it with subsonic.

is there a good and functionally how to which works proberly?

i have made these steps:
http://blog.irq1.com/install-subsonic-w ... rtificate/
http://blog.vinnymac.org/?p=25

but the only thing i got was this error message after the steps i do:
>HTTP ERROR: 404
>NOT_FOUND
>RequestURI=/index.view
>Powered by jetty://

what made i wrong?

best regards Harry61

Re: SSL with offical wildcard Certificate

PostPosted: Thu May 28, 2015 7:01 am
by degan6
The two tutorials you listed overlap. In simple terms they both are giving ways of securing Subsonic with a valid Cert. You would only follow one.
I would suggest you go with the second one name: 'Configure Frontend Apache Server to Proxy to a Backend Subsonic Server'. In my option this is the more secure way. This means that you should disable HTTPS in subsonic. If you would like to add an extra layer of security change Jetty so it only accepts connections from localhost and your public IP.

As for the 404 error:
Where do you revive it?
-When you connect to subsonic directly or when you connect through the reverse proxy?
If you get this error when connecting dirretly to subsonic I just reinstall subsonic. Take a backup of your database file first and remove subsonic and just reinstall it.
Then follow the second tutorial to setup the reverse proxy.

Re: SSL with offical wildcard Certificate

PostPosted: Fri Jun 12, 2015 8:04 am
by Harry61
Hi degan6

i installed my hostet vps new installed subsonic an made the changes described in the tutorial "configure frontend apache ....." .
After this i rebooted the server and tried to acces the subsonic server with ports 5443 or 6443 (see configuration file in the description of the tutorial)

I got an error message which says that this ports not avaible an no access to subsonic was possible.
Your suggestion about "take no. 2 of the tutorials" was given by a functionable version of your subsonic wildcard security or only by the way it works?

So at the moment a stand on point 0 for my problem to get a official wildcard certificate into subsonic for a secure access.

Has nobody else a functionable how to description to make this perfect software more secure?

Best regards and sorry for my English :-)
Harry
All times are UTC
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Group
http://www.phpbb.com/