Launch butterfly server with nginx (reverse proxy conf) #156
Comments
|
There's some parameter like --i-hereby-declare-i-want-no-security-whatsoever. |
|
Yes but it's only to hide the warning message. Resume: htpasswd password + link = total control on the terminal and it's bad. |
|
butterfly in secure mode (default) relies on client certificate authentication (by user) and handle ssl for you. Maybe there's a way to proxy ssl client auth with nginx, I don't know but I'll merge any good PR that fixes this problem and welcome any edits in the wiki that offer a more secure way to use butterfly (which btw has not be made for that) as a ssh server . #153 should probably also be fixed. |
In my case its apache instead of nginx. But why is it considered less secure if apache (or nginx) handles the ssl part? Working Apache config by kg4iae: #165 And here how I start butterfly behind Apache: For the 'sharing session' feature, is it possible to disable that (apart from just change the motd cosmetically)? Doesn't it imply a dangerous way of being compromised? |
Hi all,
we can read the wiki to launch butterfly.server.py on a server with nginx conf.
But the butterfly service will be launch in --unsecure.
The only security is the .htpasswd but i have this message: "/!\ This session is UNSECURE everyone can access you terminal at: [URL_HERE]"
My question is: how to launch the butterfly server in secure mode with nginx conf?
nano /etc/systemd/system/butterfly.serviceat line:
ExecStart=/var/www/rmarron/www/subdomains/butterfly/venv/bin/butterfly.server.py --unsecure --host=127.0.0.1 --login=trueif delete the --unsecure param, the server is inaccessible.
Thx for your help.
The text was updated successfully, but these errors were encountered: