VanFanel89
2[H]4U
- Joined
- Apr 21, 2004
- Messages
- 2,931
Gents,
I am in a bit of a pickle - allow me to elaborate:
I have ZoneMinder setup at home which I use for surveillance. There's a neat app out there for iDevices called eyeZM which allows me to monitor devices over 3G signal. Unfortunately, it would not work with unsigned SSL certificates... (the ones where the browser says OMG ITS UNTRUSTED BUT DO YOU STILL WANNA DO IT???).
Fortunately I found a guide that tells you how to make a self-signed CA certificate and deploy it on Apache (apache2 on Debian Squeeze 6.0).
Unfortunately... whatever I do seems to fail and it still says the certificate is untrusted. My network setup is as following:
Zoneminder Server -> pfSense firewall -> outside world. To access the server, I just a port on the firewall forwarding to port 443 on the server. Perhaps that's the root cause of the problem? I gave the cert the domain of the server on my LAN (i.e. server.lan) for the common name (varying between the CA and Server cert) but it still does not work properly...
Can someone point me in the right direction of what I may be doing wrong? This is the guide I was using...
http://www.tc.umn.edu/~brams006/selfsign.html
Thanks!
I am in a bit of a pickle - allow me to elaborate:
I have ZoneMinder setup at home which I use for surveillance. There's a neat app out there for iDevices called eyeZM which allows me to monitor devices over 3G signal. Unfortunately, it would not work with unsigned SSL certificates... (the ones where the browser says OMG ITS UNTRUSTED BUT DO YOU STILL WANNA DO IT???).
Fortunately I found a guide that tells you how to make a self-signed CA certificate and deploy it on Apache (apache2 on Debian Squeeze 6.0).
Unfortunately... whatever I do seems to fail and it still says the certificate is untrusted. My network setup is as following:
Zoneminder Server -> pfSense firewall -> outside world. To access the server, I just a port on the firewall forwarding to port 443 on the server. Perhaps that's the root cause of the problem? I gave the cert the domain of the server on my LAN (i.e. server.lan) for the common name (varying between the CA and Server cert) but it still does not work properly...
Can someone point me in the right direction of what I may be doing wrong? This is the guide I was using...
http://www.tc.umn.edu/~brams006/selfsign.html
Thanks!