Send Motion-user mailing list submissions to
motion-user@lists.sourceforge.net
To subscribe or unsubscribe via the World Wide Web, visit
https://lists.sourceforge.net/lists/listinfo/motion-user
or, via email, send a message with subject or body 'help' to
motion-user-requ...@lists.sourceforge.net
You can reach the person managing the list at
motion-user-ow...@lists.sourceforge.net
When replying, please edit your Subject line so it is more specific
than "Re: Contents of Motion-user digest..."
Today's Topics:
1. Re: Live video not displayed (MrDave)
2. Re: Live video not displayed (John B)
----------------------------------------------------------------------
Message: 1
Date: Wed, 30 Mar 2022 18:10:43 -0600
From: MrDave <motionmrd...@gmail.com>
To: motion-user@lists.sourceforge.net
Subject: Re: [Motion-user] Live video not displayed
Message-ID: <9988ee7c-27ed-3875-bdcd-e26acae22...@gmail.com>
Content-Type: text/plain; charset=UTF-8; format=flowed
On 3/30/2022 10:16 AM, Dave Howorth wrote:
> On Wed, 30 Mar 2022 08:52:35 -0500
> Barry Martin <barry3mar...@gmail.com> wrote:
>
>> Hi again!
>>
>>
>>> So the problem is the 's' (secure) thingie in http.
>>>
>>>
>>> As for how to fix I'm not so sure it's you.? I did find this
>>> (specifically for Firefox but may be similar settings for other
>>> browsers): https://support.mozilla.org/en-US/questions/1246512
>>>
>>> Relevant segment:
>>>
>>> There's a workaround listed here:
>>>
>>> https://docs.gitlab.com/omnibus/settings/nginx.html#setting-http-strict-transport-security
>>>
>>>
>>> That was it! Thank you so much. I had browsed that very document
>>> earlier, but skipped the HSTS section as I was not familiar with
>>> that protocol. Setting hsts to 0 and reconfiguring did the
>>> trick.
>>>
>>>
>>> So that would (should!) fix the user side on a one-by-one basis.
>>> How to fix it on your side I haven't a clue.
>>>
>> Well, that didn't seem to work.? I went in to Firefox's about:config
>> and toggled 'SiteSecurityServiceState.txt' and 'hsts' from 'true'
>> (default) to 'false'.? Exited Firefox and retried.? Same results as
>> before. (Darn!)? I couldn't manually edit out that 's' in the session
>> but if I copied to a text editor (actually I copied to the notes I
>> was making in OpenOffice), pasted the original address using the
>> unformatted option, remove the 's', copy that to Firefox then it
>> works!
>>
>> Admittedly I did not do a reload procedure to Firefox (probably a
>> sudo system or sudo systemctl command [Ubuntu / Linux on this end])
>> but just closed Firefox and start a new session.? At least we found a
>> work-around!
>>
>> Barry
> Ugo can't fix it for everybody. The problem is that duckdns.org is not
> serving https. So if you view lalpinistavirtuale.it as http then it's
> OK, but if you view it as https or have an add-on like https-everywhere
> or then the default is that you'll see a white box because there's no
> way to fetch from duckdns.org using https. Firefox and I think all
> other browsers will try to protect you from man-in-the-middle attacks
> that can occur when serving an http frame in the middle of an https
> page. You can tell Firefox to ignore such attacks but (a) everybody
> would have to do that and (b) it's risky. The whole world is moving
> towards using https so the correct answer is to persuade duckdns.org to
> serve an https version. That may or may not be trivial depending on
> their hosting arrangements.
>
The feed from duckdns.org appears to be directly from Motion. Have you
tried setting up the Motion stream with TLS so that it serves the page
as https?? Not sure if duckdns.org charges for the cert and key files or
not but if you want a no warning solution, that may be needed.
If you just want to test, you can also create your own cert and key file
but it could give users warnings about different domains and self signed
certs.? (Since it is a frame on a different page, this could cause
issues too.....)
The following is a "how to" video on setting up Motion to serve https
pages using a self signed certificate.
https://www.youtube.com/watch?v=bnpvLHr8cY8
> _______________________________________________
> Motion-user mailing list
> Motion-user@lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/motion-user
> https://motion-project.github.io/
>
> Unsubscribe: https://lists.sourceforge.net/lists/options/motion-user
------------------------------
Message: 2
Date: Thu, 31 Mar 2022 04:56:20 -0500
From: John B <yona...@riseup.net>
To: motion-user@lists.sourceforge.net
Subject: Re: [Motion-user] Live video not displayed
Message-ID:
<20220331045620.3bacd4d2@Piss_on_Biden.JBiden_the_shit-hole.gov>
Content-Type: text/plain; charset=UTF-8
On Wed, 30 Mar 2022 08:52:35 -0500
Barry Martin <barry3mar...@gmail.com> wrote:
> Hi again!
>
>
> > So the problem is the 's' (secure) thingie in http.
> >
> >
> > As for how to fix I'm not so sure it's you.? I did find this
> > (specifically for Firefox but may be similar settings for other
> > browsers): https://support.mozilla.org/en-US/questions/1246512
> >
> > Relevant segment:
> >
> > There's a workaround listed here:
> >
> > https://docs.gitlab.com/omnibus/settings/nginx.html#setting-http-strict-transport-security
> >
> >
> > That was it! Thank you so much. I had browsed that very document
> > earlier, but skipped the HSTS section as I was not familiar with
> > that protocol. Setting hsts to 0 and reconfiguring did the trick.
> >
> >
> > So that would (should!) fix the user side on a one-by-one basis.? How
> > to fix it on your side I haven't a clue.
> >
>
> Well, that didn't seem to work.? I went in to Firefox's about:config?
> and toggled 'SiteSecurityServiceState.txt' and 'hsts' from 'true'
> (default) to 'false'.? Exited Firefox and retried.? Same results as
> before. (Darn!)? I couldn't manually edit out that 's' in the session
> but if I copied to a text editor (actually I copied to the notes I was
> making in OpenOffice), pasted the original address using the unformatted
> option, remove the 's', copy that to Firefox then it works!
>
> Admittedly I did not do a reload procedure to Firefox (probably a sudo
> system or sudo systemctl command [Ubuntu / Linux on this end]) but just
> closed Firefox and start a new session.? At least we found a work-around!
>
> Barry
>
>
The site works with https *and* http with the Basilisk and Seamonkey browsers,
and only the http with Firefox (I didn't have to copy and paste it worked
clicking the link(s) in my Claws mail). Of course this is that it worked for
*me*, so it may not work for everyone. FYI, I'm on Slackware current (KDE Plasma
5.24.2, Qt 5.15.3, Kernel 5.16.12) if that happens to mean anything also for
this 'test'.
John
------------------------------
------------------------------
Subject: Digest Footer
_______________________________________________
Motion-user mailing list
Motion-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/motion-user
------------------------------
End of Motion-user Digest, Vol 189, Issue 20
********************************************
