Another step towards MyOmBox securisation

We are not trying to advocate the “complot theory” at all cost, but everybody knows that computer piracy is increasingly prevalent.

You must therefore exercise caution, without falling into paranoia. This is why we have created this tutorial enabling you to optimally secure your MyOmBox and connected devices, especially if you have configured it to be accessible from outside your home.

1 – Certificate acquisition and connection encryption in SSL (from a computer)

This certificate will enable you to display the MyOmBox interface without any error message from your browser, or blank page from your mobile application… It is required for data encryption from your smartphone or tablet and your MyOmBox.

You can download it by entering the following address in your browser: http://IP_de_votre_MyOmBox/ca.crt, obviously replacing IP_de_votre_MyOmBox by your real IP address, such as 192.168.xxx.xxx. It is the one you received when you first set up your MyOmBox.

The correct address in the browser
The correct address in the browser

This will launch the certification file download on your device. Simply double click to install it. A message will be displayed, asking if you wish to add it to your session or system. The best solution is adding it to your system.

Do not be surprised to see the following written in red “This certificate isn’t approved”. This is nothing to worry about. It just means that Apple hasn’t recognised it as one of its certificates.

2 – Configuring your ADSL box

Open your ADSL box’s admin by entering its address (which is very often 192.168.1.1 or 192.168.0,1). Go to the NAT and add (or modify) the 80 internal and external ports (non-protected mode) to 443. You will then be able to access the protected mode of your box.

Modification du NAT pour MyOmBox
Modification du NAT pour MyOmBox

Note: If you use the Web Application mode or would like to receive notifications by email whenever the IP address changes, you do not need to change anything on MyOmBox admin interface except for the “external connection URL” link in general options.

3 – Configuring smartphones and tablets

     A – Implementing the certificate

Follow the same procedure as for the computer. However, to implement it on iPad or iPhone, you must use the original browser, which is Safari. It does not work with Google Chrome.

In Safari, enter http://IP_de_votre_MyOmBox/ca.crt,  a window opens asking you to install the new profile, enter your code, which is required to access your mobile device and install the root certificate.

     B – Modification on the dedicated application

When you open the dedicated application on iPad or iPhone, you can configure the local address as well as the external address.

It is the latter that you can change. Instead of http, enter https. And enter 443 instead of 80. You can also add the letter “s” in your local address if you would like to locally encrypt your connection.

All done! Everything functions perfectly well, in a secured manner!!

Sécurisation_iPad-004

 

Leave a Reply

Your email address will not be published. Required fields are marked *