SABnzbd Forums

Hello,

I was wondering if, being browser based, SAB is less secure/more risky than something such as Newsbin. I'm not sure if that's a dumb question, but I thought I'd ask.

What do you do to minimize risk? I was using VyprVPN, but then my ISP blocked their IP, which got me worried for a second.

Cheers!

It's not less secure, as long as you keep all traffic local.
You do this by using "localhost" as the host address for SABnzbd.
Nothing of the user interface will exit your system.

VyprVPN and your ISP both only see the Usenet traffic, of SABnzbd and of newsbin.

Thanks for the response!

Also, when enabling https, are the default key and certificate valid? I.e., is 'server' in server.cert and server.key supposed to be filled in with something else or left as is? I left them as is and I seem to be connected, I just had to make a security exception and it says it's run by 'unknown.'

Can everything in the https tab of the config general menu be left in their default values? I'm connected to SAB through an https localhost connection with everything default, using ssl ports while connected to my usenet server, and all being run through a chameleon vpn. Sound good? Sorry if all of this is dumb.

mreofmrv wrote: are the default key and certificate valid?

It's usable, but it's not an official certificate. It cannot be.
Firefox allows you to store a permanent exception for such a certificate,
but other browsers are rather paranoid about it.

mreofmrv wrote: Can everything in the https tab of the config general menu be left in their default values?

HTTPS for the internal server and SSL for usenet are completely separated.
As long as you're not leaving your home network, there's no need to use HTTPS.
SSL for Usenet is always recommended, otherwise the password of your Usenet account will be sent as plain text.