disablink http (non secure) server access

Hi everyone ,

Greetings!!

I wanted to secure my Mac server, so I decided to close any HTTP access still available, I turned on the Infigo Reflector which works perfectly, but I noticed that if I try to access the Indigo Server from the app on a straight IP address, it simply connects with User Id & Password.

Any way to disable this and keep only the reflector access?

Many thanks in advance for your time and effort.....

/frank

Hi everyone ,

Greetings!!

I wanted to secure my Mac server, so I decided to close any HTTP access still available, I turned on the Infigo Reflector which works perfectly, but I noticed that if I try to access the Indigo Server from the app on a straight IP address, it simply connects with User Id & Password.

Any way to disable this and keep only the reflector access?

Many thanks in advance for your time and effort.....

/frank

If you mean the Indigo Client App, then it's not using HTTP. It's using it's own protocol on it's own port (default 1176, I think).

You really don't want to force the Client app to go through the reflector (cloud based) to access a server on the local LAN.

FlyingDiver, thanks for you prompt replay, I was not expressing my self right

What I mean is :

if I start my indigo server @ 84.78.232.10:8176 and I get any browser around the world typing http://84.78.232.10:8176 it will prompt me username and password, this dat will travel "not secured" and anybody can see it on its journey. The app uses its own protocol but if it is not secured, most likely will be clear, not secured, as well.

The reflector shields all the info, so if you connect using the https://xyzxzyreflector.indigodomo.net/ (https - protocol).

Now, my question is the following:

As I am using the https://xyzxzyreflector.indigodomo.net/ (https - protocol). to connect to my server,
can I disable the
http://84.78.232.10:8176

so that anybody trying to access http://84.78.232.10:8176 will receive a "unable to connect" or "the server is not available" or anything different from a prompt with user ID and Password?

Thanks for your suggestions

/frank

If you're using the reflector, then you should NOT be port-forwarding port 8176 for web access. Turn that off.

This is totally separate from the Indigo Client.

Hi FlyingDiver, thanks again I will not port-forwarding port 8176 for web access. Will turn that off.
It will solve the practical prob

As this is totally separate from the Indigo Client/Server mechanism, as far as anybody knows is there within the indigo settings a switch to stop the http call? So that even if someone gets into the network and can go to port 8176 it will receive a deny?

Meanwhile, thanks mate you did a great job in helping !

/frank

You could probably do that, but it would break Indigo Touch.

[jay (support)]

It's currently not possible to turn off http. Supporting HTTPS natively in Indigo is on the feature request list however.