nayr wrote:ah, I see.. well I dont trust domoticz that much, I'd rather expose nginx as its powering some massive sites and sure to be on top of security.
I dont think you'll get an A+ rating using only the built in HTTPS without modifying the built in webserver code to harden it, I dont see any configuration options for chiper suits or anything.. Going to have to drop all the old weak crypto out of the client options.
Same thing goes for me!
But I hope that I can help making Domoticz better for the more average users in the future (if Domoticz will become an widely used product).
On top of that I think that it will be easier to change it now while there is a lot programming going on and hopefully the changes can be made without to much trouble, then when we have to change it when it is a full blown solution and changes get harder and harder.