HTTPS certificate for ReadyNAS 312.. ReadyNAS OS 6.10.9

Question

Hi, i have achieved in the following topic finally to get apache+php+mysql+phpmyadmin installed and working.

https://community.netgear.com/t5/ReadyNAS-Storage-Apps-Current/Cant-install-MySQL-addon-cause-missing-repo-or-packages-please/m-p/2382239/highlight/false#M17067

Have tried accessing files hosted on nas, and its not regarding only the webserver, but is same situation with the admin when tried from internet.

There was/currently is some https certificate, "that should be" vailid until 2040 year, which would be great. But im not sure whether certificate authority and provider are ok. Browser asks everytime for exception cause unsafe certificate.

Because its regarding webserver, that needs to have valid https certificate, so it could supply web content flawlessly, without asking for permission for exception. I mean solution in browser is not acceptable, i need in the NAS.

Is there some easy way how to replace, extend, validate the current certificate, for public use with nas, webserver and content, or how just get new one, its regarding less that 10 domains, including subdomains less than 100. Like guide or howto? Or some solution that could be linked or previous topic? Thank you.

Sandshark · Answer

Since snap is not available for Debian prior to V9, that's not an option.&nbsp; But you should be able to set up a cron&nbsp;job or systemd periodic task to do the "manual" update.

StephenB · Answer

ddewrbbdg&nbsp;wrote:
&nbsp;
There was/currently is some https certificate, "that should be" vailid until 2040 year, which would be great. But im not sure whether certificate authority and provider are ok. Browser asks everytime for exception cause unsafe certificate.
&nbsp;

ReadyNAS ships with a self-signed certificate, so there is no CA.&nbsp; With no CA, there is no way to authenticate the NAS.&nbsp; That is why browsers warn you when you connect.&nbsp; The https connection will still be encrypted.&nbsp;&nbsp;Note you do need to get a domain name in order to install a real cert.
&nbsp;
There is a post here that might be useful to you:

https://community.netgear.com/t5/Using-your-ReadyNAS-in-Business/Install-a-letsencrypt-certificate-on-RadyNAS-6-10-5-hotfix-1/m-p/2116817

&nbsp;

Sandshark · Answer

In order to be assigned a certificate from a certificate authority, you need a domain name to which it is assigned. You can use a dynamic DNS provider for the link to the IP address -- you don't need a fixed IP. Once you have done that, you can get a certificate. But because of the age of the Debian version ReadyNAS OS is based upon, folks are having difficulty getting certificate update utilities to continue to operate.

Furthermore, also based on the age of the OS, you need to consider that public access to a ReadyNAS may no longer be safe. Just public exposure is questionable.

I don't know what you are running on the ReadyNAS for which you need public access, but you may want to re-think it. I personally run OwnCloud on another device and link some folders on my ReadyNAS to that, but they are all mounted as read-only.

StephenB · Answer

Sandshark&nbsp;wrote:
I don't know what you are running on the ReadyNAS for which you need public access, but you may want to re-think it.&nbsp;&nbsp;

Very true.
&nbsp;
Now that Debian Jessie has been archived, the only security patches you will get for the NAS are ones that Netgear chooses to backport.&nbsp; No idea how long they will do that.&nbsp;&nbsp;
&nbsp;
A safer path would be to run the web server on a different machine (perhaps a VM) and mount any NAS shares you might need on that server.
&nbsp;
&nbsp;

ddewrbbdg · Answer

Hi, it's regarding hosting few websites, cause services regarding hosting prices gone crazy wild, i mean really expensive. Regarding certificate and using http/s we all know purposes, advantages and disadvantages of occurence in current IT world.&nbsp;Yeah it's regarding good / old ReadyNAS 312 with currently outdated Jessie linux. There are mostly workarounds and people still developing, like not only enthusiasits, etc. It's a great piece of hardware and don't want go other alternative, cause it would result leaving Netgear ReadyNAS and using some free / open NAS solution for casual pc / server hardware. + dozens of similar problems and solving howto do this and that again.&nbsp;---&nbsp;So this case... is it's not regarding the webadmin, but domains, yeah ip address is not dynamic, but static, can still use no ip or some similar service for it if needed. But domains are correctly set, should be ok, it does work as it should as i have reverified. I've been also able to setup apache+php+mysql, some newer versions, that all work correctly, using IP address any webcontent is correctly interpreted and displayed to visitor/'s webbrowser. Yeah.. again there are questionable thing like security and so, merging webserver and fileserver - NAS with many ways of access, in one device and OS, etc. but please lets skip this. Trying to mantain both strictly splitted and secured.&nbsp;Only thing that's problem is .. how to get.. i have read ... probably Let's Encrypt would be best, allowing up to 100 sub/domains and work with - supply to visitor/'s webbrowser the https certificate. That is what i've been looking for... Is there some previous topic/theme, that could be linked, community, or external website with such a guide, that you'd know and could link pls?

Forum Discussion

HTTPS certificate for ReadyNAS 312.. ReadyNAS OS 6.10.9

7 Replies

Related Content

Chrome Certificate

ReadyNas 212 HELP needed

RND2000v2 (ReadyNAS Duo v2) Serveur https inaccecible, certificat obsolète

ReadyNas 104

ReadyNAS 628x version 6.10.9 applications

NETGEAR Academy

ProSupport for Business