Page 1 of 1

domoticz on raspberry pi safety with https.

Posted: Wednesday 15 March 2017 22:14
by jhenrikb
Hi.

I'm having a bit of a hard time to understand what so special with port 443 and HTTPS. Once I have opened the port, i can still access my domoticz if I know Username and password, and if anyone else have gotten that they would to the same way on HTTP.

So I dont actually get whats so safe about it? (or did i completely missunderstand?)

How can I access domoticz safely from outside my LAN?
I googled this and ended up installing openVPN with "piVPN" on the same raspberry pi domoticz is running on, but have no idea how to run domoticz through "openvpn" or if I missunderstood that too.

Anyone know more about this? or can point me to a link/previous post explaining this?

John

Re: domoticz on raspberry pi safety with https.

Posted: Wednesday 15 March 2017 22:41
by randytsuch
I might be able to answer the openvpn question.

I run openvpn on my router, and openvpnconnect on my phone.

After I set up openvpn on my phone, I can make a openvpn connection when I am away.

Once you have the openvpn connection, you can access your network just like you were at home.

So if you have a domoticz client on your phone that lets you control domoticz, after you open the connection, you can open and use the domoticz client just like you were at home.
The openvpn connection should allow your phone to do the same things you can do while at home.

Randy

Re: domoticz on raspberry pi safety with https.

Posted: Thursday 16 March 2017 13:10
by jhenrikb
randytsuch wrote:I might be able to answer the openvpn question.

I run openvpn on my router, and openvpnconnect on my phone.

After I set up openvpn on my phone, I can make a openvpn connection when I am away.

Once you have the openvpn connection, you can access your network just like you were at home.

So if you have a domoticz client on your phone that lets you control domoticz, after you open the connection, you can open and use the domoticz client just like you were at home.
The openvpn connection should allow your phone to do the same things you can do while at home.

Randy
Ugh ofcourse. I can use the OpenVPN to connect to my LAN, then connect to the domoticz from there. I just felt really stupid :?

Just need to connect my phone to the openvpn program running on the pie, then voila :D

Thanks :)

Re: domoticz on raspberry pi safety with https.

Posted: Thursday 16 March 2017 13:38
by asjmcguire
HTTPS means that your connection to Domoticz is encrypted - it's not about protecting the service itself from hackers - it's about protecting your connection to it - for example if you sit at McDonalds connected to the free WiFi and you open the Domoticz app on your phone and connect to your Domoticz instance over standard HTTP - then your username and password (and cookies) can be intercepted by anyone else connected to the McDonalds network.

For almost everything - you really would be better suited to using a VPN and using it whenever you are connected to a public WiFi network (not just free ones, pay ones too - the problem still exists on hotel networks etc - any WiFi network where other people who you don't know can connect).

Re: domoticz on raspberry pi safety with https.

Posted: Thursday 16 March 2017 17:11
by randytsuch
I had the same question when I started using VPN.

So after I make a connection, then what?

Its easy once you know the answer, like so many things :D

Re: domoticz on raspberry pi safety with https.

Posted: Friday 17 March 2017 7:32
by jannl
When configured correctly everything works the same as when you are at home. Just connect to the same ip addresses. But this depends on the configuration of your vpn