December 27, 20241 yr Hello, I have a server that has been running for a year without certificate provisioning. I tried to provision it today, and it caused the UI to behave strangely, preventing me from saving any changes. There were many warnings in the logs like this one: Dec 27 13:29:13 nas nginx: 2024/12/27 13:29:13 [error] 12251#12251: *2345525 connect() to unix:/var/run/emhttpd.socket failed (11: Resource temporarily unavailable) while connecting to upstream, client: 192.168.1.112, server: , request: "POST /update.htm HTTP/1.1", upstream: "http://unix:/var/run/emhttpd.socket:/update.htm", host: "192.168.1.200", referrer: "http://192.168.1.200/Settings/ManagementAccess" I restarted Unraid and tried provisioning again. This time, there was an error in the logs: Error: Server was unable to provision SSL certificate Could you please help?
December 28, 20241 yr Never connect embedded devices like Unraid to the internet. They are not secure enough to be exposed. If you must do this I'd Caddy web server as a proxy, it will automatically handle SSL certs. You can alternately generate a "snake oil" certificate from the Linux console, but that defeats the point.
December 28, 20241 yr Author 5 minutes ago, cuimalo said: Never connect embedded devices like Unraid to the internet. They are not secure enough to be exposed. If you must do this I'd Caddy web server as a proxy, it will automatically handle SSL certs. You can alternately generate a "snake oil" certificate from the Linux console, but that defeats the point. I don't think it's exposed to the Internet. I only use the flash backup and don't have the remote access enabled. The SSL certificate I think will help local session to be more secure.
December 28, 20241 yr Quote I only use the flash backup and don't have the remote access enabled. Great. Quote The SSL certificate I think will help local session to be more secure. Right now it's as secure as your network is. Unless you have a "real" public cert or you understand how to setup a private CA it won't help against MITM attacks. https://docs.unraid.net/unraid-os/manual/security/secure-webgui-ssl/
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.