2017-12-17 16:38 CET

View Issue Details Jump to Notes ]
IDProjectCategoryView StatusLast Update
0001798openmediavaultFeaturepublic2017-11-10 10:21
Assigned Tovotdev 
Product VersionErasmus (3.x) 
Target VersionFixed in Version 
Summary0001798: Secure the WebUI by listening on a specific interface/address
DescriptionCurrent Nginx configuration generated by omv-mkconf is set to always listen on all available interfaces.

Allowing to restrict listening on a specific IP address could increase security.
Additional InformationOne of the four concerned blocs in /usr/share/openmediavault/mkconf/nginx.d/10webgui:
  -i "${ipv6enabled} = 0" \
    -v "concat(' listen ',port,';')" -n \

Which generates this line in /etc/nginx/sites-enabled/openmediavault-webgui:
listen 80;

Nginx "listen" directive doc:
TagsNo tags attached.
Product build3.0.86
Attached Files




raulfg3 (reporter)

+1 to this feature, not only increase security, is a must for use pihole and asing it to a cloned IP like is described here:


without this feature I need to corect by hand file /etc/nginx/sites-enabled/openmediavault-webgui and when done OMV say in webGUI that are pending settings to do, if I push "apply", changes are out, and same if I push "revert", so is a pain to configure in a working enviroment.


raulfg3 (reporter)

some news?


monsen (reporter)

I use the solution provided by raulfg3 mentioned above.
Problem is that whenever i change priviledges for folders in OMV GUI settings in /etc/nginx/sites-enabled/openmediavault-webgui get written back to default and nginx stops working.

This is is severe for me as it breaks OMV for main functionality through the WebGUI. I am sure others will discover this to be a problem.


monsen (reporter)



raulfg3 (reporter)


-Issue History
Date Modified Username Field Change
2017-08-01 17:41 MathieuMD New Issue
2017-08-01 17:41 MathieuMD Status new => assigned
2017-08-01 17:41 MathieuMD Assigned To => votdev
2017-09-29 11:30 raulfg3 Note Added: 0004947
2017-10-29 10:38 raulfg3 Note Added: 0004989
2017-10-29 11:10 monsen Note Added: 0004990
2017-10-29 11:11 monsen Note Added: 0004991
2017-11-10 10:21 raulfg3 Note Added: 0005028
+Issue History