Page 1 of 1

web interface question

PostPosted: Fri Sep 15, 2006 9:43 am
by Ratt
Guys, I'm trying to make my Emule webinterface accessible from an external location (it already works inside my lan). Two things:

1) How secure is it? I realize that opening up port 4711 on my router and then basically run a webserver always constitutes a certain risk. But as long as it's not a gigantic vulnerability, I can deal with that.

2) My networking skill is limited. I know my public IP, and like I said I will forward the right port on my router. But it seems odd to me (I'm not testing yet) that suddenly http://my_public_ip:4711 is going to lead straight to my Emule running on only one computer inside my lan. How does it know which member of the lan the request is addressed at? It seems like I'm skipping a step there.

As always, much appreciated.

PostPosted: Fri Sep 15, 2006 9:44 am
by LaX
Not sure about 1), but for 2)...

Usually when you open a port, you'll also specify the LAN IP for the port to be opened.

PostPosted: Fri Sep 15, 2006 9:47 am
by Ratt
Aw jeez, I suck. :roll: Of course one has to specify the internal ip to forward. Thanx.

PostPosted: Fri Sep 15, 2006 11:49 pm
by IneptVagrant
I used it for awhile to add links from work, I decided after awhile, remote desktop was more useful.

1) Its secure until someone finds a way to exploit it. That said, the interface is pretty simple and I don't think anyone cares enought to break it. The password is there to limit what someone can access to potentially exploit. -- Without the password there is very little to work with.

If youre really paranoid you could run emule uning a new/special user and then only give that user rights to the folder/files emule needs to run.

PostPosted: Sun Sep 17, 2006 7:02 am
by Ratt
IneptVagrant wrote:I used it for awhile to add links from work, I decided after awhile, remote desktop was more useful.


What would be nice, I think, is to have a kind of email feature just for adding hash-links. You send a mail with the link inside, Emule picks it up and starts downloading. Far more limited than the webinterface, of course, but probably more secure (especially if you encrypt the email) and easier to configure.

1) Its secure until someone finds a way to exploit it. That said, the interface is pretty simple and I don't think anyone cares enought to break it. The password is there to limit what someone can access to potentially exploit. -- Without the password there is very little to work with.


Sounds good to me. For some peace of mind, I'll just use a very high, random port number instead of 4711, and a really long password for the interface. Makes no real difference except to me. :lol:

If youre really paranoid you could run emule uning a new/special user and then only give that user rights to the folder/files emule needs to run.


You mean make a new user in Windows? But then from a remote computer, how do you indicate that you are that windows user? Do you get a special logon window like with FTP?

PostPosted: Tue Sep 19, 2006 4:53 am
by Ratt
Well, I've got it working perfectly (and on three different LANs, too!). Thanks for the info.

As far as user privileges are concerned, even though it's not quite the same thing, I did turn on the "Run eMule as an unprivileged user" feature, which I had been neglecting until now.

PostPosted: Tue Sep 19, 2006 2:42 pm
by IneptVagrant
Ratt wrote:
If youre really paranoid you could run emule uning a new/special user and then only give that user rights to the folder/files emule needs to run.


You mean make a new user in Windows? But then from a remote computer, how do you indicate that you are that windows user? Do you get a special logon window like with FTP?


Yes that is what I ment. If you logged into remote desktop (a short tutorial) as an admin, u'ld still have rights to access everything including emule. I haven't heard of "run as an unprivilged user", but that sounds right to me.