The first step was upgrading to OpenWRT 10.03, which was really easy:
cd /tmp/
wget http://downloads.openwrt.org/backfire/10.03/brcm47xx/openwrt-brcm47xx-squashfs.trx
sysupgrade openwrt-brcm-2.4-squashfs.trx
reboot
Now it’s playtime!
Of course all of bredsaal.dk is secured by SSL, not only the administration part, but since I’m using a self-signer certificate, most (if not all) modern browsers will warn the user that the certificate is not signed by a third-party, such as thawte.
Please note that this describes how to use a self-signed certificate on Debian Lenny, if you use a different distribution, you might have to change stuff.
Creating your certificate
sudo -s
mkdir /etc/lighttpd/certificates
cd /etc/lighttpd/certificates/
openssl req -new -x509 -keyout bredsaal.dk.pem -out bredsaal.dk.pem -days 365 -nodes
chown www-data:www-data /etc/lighttpd/certificates/ -R
chmod 600 /etc/lighttpd/certificates/
Setting up lighttpd
cat << EOF >> /etc/lighttpd/lighttpd.conf
$SERVER["socket"] == "bredsaal.dk:443" {
server.document-root = "/var/www/bredsaal.dk/"
ssl.engine = "enable"
ssl.pemfile = "/etc/lighttpd/certificates/bredsaal.dk.pem"
}
EOF
Now you just need to restart lighttpd:
/etc/init.d/lighttpd restart
That’s it. Now, go see if you can reach https://bredsaal.dk/!
sudo apt-get install libssl-dev zlib1g-dev libidn11-dev build-essential
wget http://skipfish.googlecode.com/files/skipfish-1.34b.tgz
tar xzf skipfish-1.34b.tgz
make
Now you are ready to test your web application:
./skipfish -W dictionaries/default.wl -o /tmp/bredsaal.dk http://bredsaal.dk/
Of course, you have to replace bredsaal.dk with your own domain. For the fastest results, install the wepapp you want to test on localhost.





Recent comments