[Freedombox-discuss] How can I get plinth listening on a public address?

Nick Daly nick.m.daly at gmail.com
Fri Aug 30 21:35:11 UTC 2013

I'm looking to merge a patch this weekend (Saturday morning or Sunday
morning?) that should allow Plinth to be generally accessible.

HOWEVER: that patch creates its own set of problems: now Plinth (and
thus, your FBX's administrative tools) are now globally accessible and
must be actively defended (usually by passwords).  Until dkg's
Firefox/Apache/PGP patches land somewhere, FreedomBoxes are stuck with
self-signed SSL certs, which is probably insufficient for most cases
(good in small or test deployments, but not at scale).


1. We need to add SSL keygen to FM's source/etc/init.d/first-run
create-keys function to protect the Plinth login in transit.
2. We need to create new Plinth user passwords on first boot (or make).
3. We need to make sure Plinth authentication actually works:

    A. Is everyone logged out by default?
    B. Is the right password required to log in?


On Fri, Aug 30, 2013 at 4:09 PM, Petter Reinholdtsen <pere at hungry.com> wrote:
> The default setup for plinth seem to be to only listen on the
> address.  How can I change it to listed to the hosts
> public address?
> I've tried modifying plinth.config, setting host to the hosts public
> address, but visiting the plinth URL just redirect me to localhost and I
> can't get it working.
> --
> Happy hacking
> Petter Reinholdtsen
> _______________________________________________
> Freedombox-discuss mailing list
> Freedombox-discuss at lists.alioth.debian.org
> http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/freedombox-discuss

More information about the Freedombox-discuss mailing list