Hello,
i have several questions but lets begin with a first one:
@ logging on Syncthing (on HP server with Open Media Vault Os)i get following message:
“Danger!
The Syncthing admin interface is configured to allow remote access without a password. This can easily give hackers access to read and change any files on your computer. Please set a GUI Authentication User and Password in the Settings dialog.”
But first let me know u my evironment: Synology Nas to Open media vault Nas connected on router with iets own firewal.Im not using option global nor im ever intended. Install of Syncthing on Synology went without any problem.After setup same message disappeaerd(Nas firewall is on). Open media vault have no firewal.To OpenMediaVault Syncthing im reaching with server/OMV ip adres with :8384
Is it needed for Openmediavault to have firewall?
Or are there some options within Syncthing that i need to make active or non active?
Or shall i just ignore warning?
P.S.And YES,i did make “GUI Authentication User and Password” but i still get warning.
“Use HTTPS for GUI” will not “save”.
I did setup a user and password.
Syncthing does not save HTTPS if set true(button active).
At every login HTTPS is non active-so it does not save that option.
Probably because it is via Openmediavault ip adres?!
How to get warning a way or just ignore it?
Actually, as far as logic thinking makes me…how to setup a an direct Syncthing ip address, avoiding Open media vault ip address?
In that case i would be able to use HTTPS.
I was trying to do my self, but did not succeed it.
You should just ignore the https warning. If https setting does not get saved you should look at chrome debug tools for issues, or perhaps it’s overriden on the command line by the media vault plugin
Worth noting as well that the HTTPS checkbox in our settings does almost nothing. The only thing it does is enables a redirect to enforce HTTPS. You can use HTTPS to the Syncthing GUI with this checkbox disabled just fine.
No. That warning is because you do not have a username and password set. It has nothing to do with HTTPS. Although once you do have a password, and you’re on an untrusted network, you should use HTTPS.
Leave those settings at their default until it becomes a problem.
1.I did setup user/password - we are talking about login on Syncthing,right?!
Untrusted network is my home network.As i said before “global discovery” is off-i dont use it. Maybe i should switch off local discovery too?!
And use static ip addresses of both nas between eachother?!
2.OK!
One funny question,how should i recognize the problem(symptoms)?
Dear Mr. Audrius,
I feel that we are both a bit lost…
1.Ok.If there is a set user-password,why i still get warning?
My apology for taking discovery into connection with warning message(thinking that have to do with it).
As Mr.Jakob Borg said:
That warning is because you do not have a username and password set.Although once you do have a password, and you’re on an untrusted network, you should use HTTPS.(unfortunately here comes a sub question:how do i enable HTTPS?
I do press on but at next opening of Syncthing that option stay unsaved even if i press save at bottom of window ).
At this point,i am trying to figure out that Syncthing see my local network as untrusted or should i see it beyond that?
Now i am asking my self,how the “hackers” can abuse this or it is irrelevant at all.On the and u are right with 2.
I am simply trying to get warning off the screen if is possible?
I truly hope u are not irritated by all these question as my deepest respect for u all!
I don’t know. The “you’re going to get eaten by hackers” warning only triggers when there is no username or password. Perhaps open media stuff overrides the authentication somehow.
Well syncthing can’t write files, more like poor setup not a bug. Given synology setup is so custom, I think its best if you seek support on their forums, as we can’t be held responsible for them providing you with something that does not work, and I don’t feel like debugging every Synology bug you experience.
Thats the good one!!! 
Yes,Openmediavault is to me from beginning the usual suspect.