Encrypted connection

[Guest]

Originally posted by: <email address deleted>

Hi,

would it be possible to access FHEM over a password protected SSL
connection? this would make it possible to open a public port for FHEM,
and have a native iphone app. i rather liked that from the homematic
system.

and i am taking my first steps into developing iphone apps

Remco

--
Sie haben diese Nachricht erhalten, da Sie der Google Groups-Gruppe FHEM users beigetreten sind.
Wenn Sie Nachrichten in dieser Gruppe posten möchten, senden Sie eine E-Mail an fhem-users@googlegroups.com.
Wenn Sie aus dieser Gruppe austreten möchten, senden Sie eine E-Mail an fhem-users+unsubscribe@googlegroups.com.
Besuchen Sie die Gruppe unter http://groups.google.com/group/fhem-users?hl=de, um weitere Optionen zu erhalten.

[Guest]

Originally posted by: <email address deleted>

Hi Remco,

you can use mod_ssl from Apache web server as reverse proxy
for accessing the web-frontends for example or an OpenSSL
tunnel for the fhem port 7072.

In Apache you define a virtual host for the SSL access over https.

ProxyPass               /fhem http://localhost:8083/fhem
ProxyPassReverse  /fhem http://localhost:8083/fhem

Gerald

On 21 Jun., 20:33, Remco wrote:
> Hi,
>
> would it be possible to access FHEM over a password protected SSL
> connection? this would make it possible to open a public port for FHEM,
> and have a native iphone app. i rather liked that from the homematic
> system.
>
> and i am taking my first steps into developing iphone apps
>
> Remco

--
Sie haben diese Nachricht erhalten, da Sie der Google Groups-Gruppe FHEM users beigetreten sind.
Wenn Sie Nachrichten in dieser Gruppe posten möchten, senden Sie eine E-Mail an fhem-users@googlegroups.com.
Wenn Sie aus dieser Gruppe austreten möchten, senden Sie eine E-Mail an fhem-users+unsubscribe@googlegroups.com.
Besuchen Sie die Gruppe unter http://groups.google.com/group/fhem-users?hl=de, um weitere Optionen zu erhalten.

[rudolfkoenig]

                                                   

> would it be possible to access FHEM over a password protected SSL
> connection? this would make it possible to open a public port for FHEM,
> and have a native iphone app. i rather liked that from the homematic
> system.

Of course it is possible, it is only a question of the effort you want to
invest

On the fhem side I would suggest a simplified copy of the 01_FHEMWEB module,
but instead of using IO::Socket::INET you probably have to use
Net::SSLeay::Handle. Note: I do not have any experience with this module.

After receiving some unencrypted data, the module should create a %client
entry like it is done after $server->accept() in fhem.pl, fill
$client{$c}{buffer}, and call AnalyzeInput($c).

I can imagine that netcat could be useful for testing the fhem side, as it can
translate between SSL and a terminal.

On the iPhone side you will probably use NSURLConnection, which according to
some blogs has even support for handling self-signed certificates.

Keep me informed: as I have some experience on both areas, I will try to help
you if time permits.

--
Sie haben diese Nachricht erhalten, da Sie der Google Groups-Gruppe FHEM users beigetreten sind.
Wenn Sie Nachrichten in dieser Gruppe posten möchten, senden Sie eine E-Mail an fhem-users@googlegroups.com.
Wenn Sie aus dieser Gruppe austreten möchten, senden Sie eine E-Mail an fhem-users+unsubscribe@googlegroups.com.
Besuchen Sie die Gruppe unter http://groups.google.com/group/fhem-users?hl=de, um weitere Optionen zu erhalten.