From: | James |
---|---|
Date: | 1/11/18 8:25 AM |
Topic: | Redirect 80 > 443 |
Type: | General Discussions |
Post a follow up |
Hey folks over at Xeams, Been a while with Christmas and New Year being on the table. Quick question as I haven't really had the time to divulge through all the options and articles. |
|
Top |
From: | Synametrics Support |
---|---|
Date: | 1/11/18 5:09 PM |
Topic: | Redirect 80 > 443 |
Type: | General Discussions |
Post a follow up |
James, You are right. This feature does not exist in Xeams and is left out by design. It is very common to run into errors when HTTPS, which happens due to several reasons. For example, an error with the certificate. In that case, you will get locked out if port 80 redirects the traffic to 443. A better way is to block port 80 from your firewall. This way, no one from the Internet will be able to connect to port 80, but you will have access from the LAN in case there is a problem with HTTPS. |
|
Top |
From: | James |
---|---|
Date: | 1/11/18 7:35 PM |
Topic: | Redirect 80 > 443 |
Type: | General Discussions |
Post a follow up |
Guys you know we work as a team on this Whilst true in its own right, simple wire sniffing can retrieve this information on the LAN side compromising the admin login. It's not always the external users you have to worry about. Internal malware can also compromise live wire data. Certificate errors are the responsibility of the internal admins to get right if they are going to use this facility. If anything certificate redirect errors provide admins with a sign that there is a problem with their config. Would it not be a better option to provide users an option to deal with this on a case by case basis..? Could you not just provide me a switch I can add to the config files to apply this setting until you internally decide if you wish to implement this crucial option? Regards, James |
|
Top |
From: | Synametrics Support |
---|---|
Date: | 1/11/18 7:42 PM |
Topic: | Redirect 80 > 443 |
Type: | General Discussions |
Post a follow up |
Sure, no problem. We will add that as an option in the next build. |
|
Top |
From: | James |
---|---|
Date: | 1/11/18 8:57 PM |
Topic: | Redirect 80 > 443 |
Type: | General Discussions |
Post a follow up |
Thanks - look forward to it. |
|
Top |
From: | Synametrics Support |
---|---|
Date: | 1/12/18 7:50 AM |
Topic: | Redirect 80 > 443 |
Type: | General Discussions |
Post a follow up |
James, Send us an email to support@synametrics.com if you would like to get this new update before it is made available publicly. We should have this ready by next week. |
|
Top |
From: | Anonymous |
---|---|
Date: | 1/12/18 8:46 AM |
Topic: | Redirect 80 > 443 |
Type: | General Discussions |
Post a follow up |
Will it be implemented as part of the auto update feature in the current build (5968) for a next week release or will it be going through some internal ring for testing first..? |
|
Top |
From: | Synametrics Support |
---|---|
Date: | 1/12/18 8:59 AM |
Topic: | Redirect 80 > 443 |
Type: | General Discussions |
Post a follow up |
We are not planning to release an update next week. I said the change you asked should be ready by next week. Internally, we are already at build 5970. Changes we make to Xeams run on our test servers for a few weeks before they are published. The feature you asked won't be made public until it has been throughly tested. I was wondering if you were okay getting the update before it gets released publically - meaning a beta release.
|
|
Top |
From: | James |
---|---|
Date: | 1/12/18 9:07 AM |
Topic: | Redirect 80 > 443 |
Type: | General Discussions |
Post a follow up |
No problem - I'll drop you an email shortly. James |
|
Top |
From: | Synametrics Support |
---|---|
Date: | 1/12/18 10:07 AM |
Topic: | Redirect 80 > 443 |
Type: | General Discussions |
Post a follow up |
Build 5970 is an interim release number. I am sure this number will go up before it's made publicly available. What is your other feature request? We will try putting that in if it does not require too much work. |
|
Top |
From: | James |
---|---|
Date: | 1/12/18 11:42 AM |
Topic: | Redirect 80 > 443 |
Type: | General Discussions |
Post a follow up |
Grey listing - presently the only way we can tell if an email server has been grey listed is thorough the logs. We then have to subtract the time of connection from the current time to know how long before we know the remote server can retry. This can be tedious with cross site implementations as the spam filter whitelist doesn't presently integrate with the grey listing facility. 2. Integration with whitelisting would also be a benefit. James |
|
Top |
From: | James |
---|---|
Date: | 1/16/18 7:23 AM |
Topic: | Redirect 80 > 443 |
Type: | General Discussions |
Post a follow up |
Just a minor push on this. Thanks, James |
|
Top |