Send Motion-user mailing list submissions to
motion-user@lists.sourceforge.net
To subscribe or unsubscribe via the World Wide Web, visit
https://lists.sourceforge.net/lists/listinfo/motion-user
or, via email, send a message with subject or body 'help' to
motion-user-requ...@lists.sourceforge.net
You can reach the person managing the list at
motion-user-ow...@lists.sourceforge.net
When replying, please edit your Subject line so it is more specific
than "Re: Contents of Motion-user digest..."
Today's Topics:
1. Re: Live video not displayed (Barry Martin)
2. Re: Live video not displayed (Barry Martin)
3. Re: Live video not displayed (Dave Howorth)
----------------------------------------------------------------------
Message: 1
Date: Wed, 30 Mar 2022 08:09:07 -0500
From: Barry Martin <barry3mar...@gmail.com>
To: Ugo Bottari <ugo.bott...@gmail.com>
Cc: motion-user@lists.sourceforge.net
Subject: Re: [Motion-user] Live video not displayed
Message-ID: <3617a605-3e20-c67f-5c3b-9a34a9c05...@gmail.com>
Content-Type: text/plain; charset="utf-8"; Format="flowed"
Hi!
> I read that someone managed to see the live video and someone did not.
> I think I have found the cause.
> http://www.lalpinistavirtuale.it/nido/nido2.asp is OK
> https://www.lalpinistavirtuale.it/nido/nido2.asp vice versa NO
> This is just the S of the 2 protocols.
> However, nowhere in my code have I indicated https.
> And it will happen, however, that my site (www.lalpinistavirtuale.it
> <http://www.lalpinistavirtuale.it>) can be reached with both protocols.
> Obviously the browser (Firefox or Chrome) adds the S spontaneously.
> But I don't know how to find a remedy.
My testing:
http://www.lalpinistavirtuale.it/nido/nido2.asp <== copy and paste to
Firefox
??? ??? Firefox (regular) ??? see everything properly
??? ??? Firefox (private) ??? Get that white box. Also noted ?https?
Try to manually remove the ?s? and FX puts back in.
https://www.lalpinistavirtuale.it/nido/nido2.asp
??? ??? Firefox (regular) ??? Get that white box.
??? ??? Firefox (private) ??? Get that white box. (because of the
?secure s?)
So the problem is the 's' (secure) thingie in http.
As for how to fix I'm not so sure it's you.? I did find this
(specifically for Firefox but may be similar settings for other
browsers): https://support.mozilla.org/en-US/questions/1246512
Relevant segment:
There's a workaround listed here:
https://docs.gitlab.com/omnibus/settings/nginx.html#setting-http-strict-transport-security
That was it! Thank you so much. I had browsed that very document
earlier, but skipped the HSTS section as I was not familiar with
that protocol. Setting hsts to 0 and reconfiguring did the trick.
So that would (should!) fix the user side on a one-by-one basis.? How to
fix it on your side I haven't a clue.
Barry
-------------- next part --------------
An HTML attachment was scrubbed...
------------------------------
Message: 2
Date: Wed, 30 Mar 2022 08:52:35 -0500
From: Barry Martin <barry3mar...@gmail.com>
To: Ugo Bottari <ugo.bott...@gmail.com>
Cc: motion-user@lists.sourceforge.net
Subject: Re: [Motion-user] Live video not displayed
Message-ID: <721161be-4ae8-692c-e787-a8879bca6...@gmail.com>
Content-Type: text/plain; charset="utf-8"; Format="flowed"
Hi again!
> So the problem is the 's' (secure) thingie in http.
>
>
> As for how to fix I'm not so sure it's you.? I did find this
> (specifically for Firefox but may be similar settings for other
> browsers): https://support.mozilla.org/en-US/questions/1246512
>
> Relevant segment:
>
> There's a workaround listed here:
>
> https://docs.gitlab.com/omnibus/settings/nginx.html#setting-http-strict-transport-security
>
>
> That was it! Thank you so much. I had browsed that very document
> earlier, but skipped the HSTS section as I was not familiar with
> that protocol. Setting hsts to 0 and reconfiguring did the trick.
>
>
> So that would (should!) fix the user side on a one-by-one basis.? How
> to fix it on your side I haven't a clue.
>
Well, that didn't seem to work.? I went in to Firefox's about:config?
and toggled 'SiteSecurityServiceState.txt' and 'hsts' from 'true'
(default) to 'false'.? Exited Firefox and retried.? Same results as
before. (Darn!)? I couldn't manually edit out that 's' in the session
but if I copied to a text editor (actually I copied to the notes I was
making in OpenOffice), pasted the original address using the unformatted
option, remove the 's', copy that to Firefox then it works!
Admittedly I did not do a reload procedure to Firefox (probably a sudo
system or sudo systemctl command [Ubuntu / Linux on this end]) but just
closed Firefox and start a new session.? At least we found a work-around!
Barry
-------------- next part --------------
An HTML attachment was scrubbed...
------------------------------
Message: 3
Date: Wed, 30 Mar 2022 17:16:20 +0100
From: Dave Howorth <d...@howorth.org.uk>
To: motion-user@lists.sourceforge.net
Subject: Re: [Motion-user] Live video not displayed
Message-ID: <20220330171620.77adb...@acer-suse.lan>
Content-Type: text/plain; charset=UTF-8
On Wed, 30 Mar 2022 08:52:35 -0500
Barry Martin <barry3mar...@gmail.com> wrote:
> Hi again!
>
>
> > So the problem is the 's' (secure) thingie in http.
> >
> >
> > As for how to fix I'm not so sure it's you.? I did find this
> > (specifically for Firefox but may be similar settings for other
> > browsers): https://support.mozilla.org/en-US/questions/1246512
> >
> > Relevant segment:
> >
> > There's a workaround listed here:
> >
> > https://docs.gitlab.com/omnibus/settings/nginx.html#setting-http-strict-transport-security
> >
> >
> > That was it! Thank you so much. I had browsed that very document
> > earlier, but skipped the HSTS section as I was not familiar with
> > that protocol. Setting hsts to 0 and reconfiguring did the
> > trick.
> >
> >
> > So that would (should!) fix the user side on a one-by-one basis.
> > How to fix it on your side I haven't a clue.
> >
>
> Well, that didn't seem to work.? I went in to Firefox's about:config?
> and toggled 'SiteSecurityServiceState.txt' and 'hsts' from 'true'
> (default) to 'false'.? Exited Firefox and retried.? Same results as
> before. (Darn!)? I couldn't manually edit out that 's' in the session
> but if I copied to a text editor (actually I copied to the notes I
> was making in OpenOffice), pasted the original address using the
> unformatted option, remove the 's', copy that to Firefox then it
> works!
>
> Admittedly I did not do a reload procedure to Firefox (probably a
> sudo system or sudo systemctl command [Ubuntu / Linux on this end])
> but just closed Firefox and start a new session.? At least we found a
> work-around!
>
> Barry
Ugo can't fix it for everybody. The problem is that duckdns.org is not
serving https. So if you view lalpinistavirtuale.it as http then it's
OK, but if you view it as https or have an add-on like https-everywhere
or then the default is that you'll see a white box because there's no
way to fetch from duckdns.org using https. Firefox and I think all
other browsers will try to protect you from man-in-the-middle attacks
that can occur when serving an http frame in the middle of an https
page. You can tell Firefox to ignore such attacks but (a) everybody
would have to do that and (b) it's risky. The whole world is moving
towards using https so the correct answer is to persuade duckdns.org to
serve an https version. That may or may not be trivial depending on
their hosting arrangements.
------------------------------
------------------------------
Subject: Digest Footer
_______________________________________________
Motion-user mailing list
Motion-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/motion-user
------------------------------
End of Motion-user Digest, Vol 189, Issue 19
********************************************
