Transmission

A Fast, Easy, and Free BitTorrent client
https://forum.transmissionbt.com/

How safe is to open access to the Web Interface from the outer world, beyond the router?

https://forum.transmissionbt.com/viewtopic.php?t=17448

Page 1 of 1

How safe is to open access to the Web Interface from the outer world, beyond the router?

Posted: Sun Oct 18, 2015 1:22 pm
by FarCry
Good day, fellows! Sorry for stupid question - I'm a noob in networking technologies.

I have just set up access to Web Interface from the outer world (set up port 9091 forwarding on my router) to be able to run torrents on my home machine from my work computer. (So I have my torrent staff already downloaded when I come back home from work.)

So, the question is:
I wonder how safe it might be to open Web Interface to the Web? Maybe there are security threats I'm just not aware of?

For example, I see that Web Interface page opens with unprotected connection (http) instead of https. So my home username is revealed in download destnation path.

Or, for expample, Web Inteface is just not intended to be accessed from the Web, only LAN?

Re: How safe is to open access to the Web Interface from the outer world, beyond the router?

Posted: Thu Oct 22, 2015 1:19 pm
by FarCry
x190 wrote:You can use the whitelist, as well as a username/password.

https://trac.transmissionbt.com/wiki/EditConfigFiles

Is it good or bad? And why http-connection? Not hhtpS?

Re: How safe is to open access to the Web Interface from the outer world, beyond the router?

Posted: Sat Jan 02, 2016 9:42 am
by killemov
I would recommend not using the web interface over plain http EVER! It's quite simple to put something like lighttpd in front of it to take care of https encryption. When using Shift you can even make most content (torrents, files) directly accessible.

Re: How safe is to open access to the Web Interface from the outer world, beyond the router?

Posted: Sat Jan 02, 2016 7:39 pm
by theroyalstudent
killemov wrote:I would recommend not using the web interface over plain http EVER! It's quite simple to put something like lighttpd in front of it to take care of https encryption. When using Shift you can even make most content (torrents, files) directly accessible.
+1, and it's free to get a Let's Encrypt certificate, so why not use that with nginx as a reverse proxy?

Re: How safe is to open access to the Web Interface from the outer world, beyond the router?

Posted: Sun Jan 03, 2016 5:24 pm
by FarCry
I didn't understand anything from this article. =((( Can someone explain this in common words, plz?

I got only that opening Transmission port to outer Internet is extremely unsafe. =((

Re: How safe is to open access to the Web Interface from the outer world, beyond the router?

Posted: Sun Jan 03, 2016 5:26 pm
by FarCry
theroyalstudent wrote:
killemov wrote:I would recommend not using the web interface over plain http EVER! It's quite simple to put something like lighttpd in front of it to take care of https encryption. When using Shift you can even make most content (torrents, files) directly accessible.
+1, and it's free to get a Let's Encrypt certificate, so why not use that with nginx as a reverse proxy?
What is all this? =))
All times are UTC
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited