Enable https on the Hidden Router
Please do note that following this guide will remove the option to access the router via http and will only be accessible via https.
To get back the http connectivity (and effectively remove the https connectivity) – you can do a factory reset of the router. All your custom settings that we initially set up will still be there, as they are baked into the firmware (like wg private keys, ips, wifi name, wifi password). So the router will be like if you just received it.
Here are the instructions to enable SSL:
If you are using a windows pc – download and install an app called Putty (if you are using linux or mac – you already have a built-in ssh client)
Run putty and connect to 10.10.10.1
(if you are running on mac or linux – just open a terminal and type in: ssh root[email protected])
enter root as username and the password you were given on the instructions manual as password (if using linux or mac – just enter the password, as user is already predefined) (the password is the same as the one you enter when you go to http://admin.hiddenrouter.com or http://10.10.10.1).
Once you are in – type the following:
(wait for it to update)
opkg install luci-ssl
(wait for it to install)
uci delete uhttpd.main.listen_http ; uci commit
(it will not show anything, but its done what it needs to do)
(that will show something similar to this output:
[email protected]:~# /etc/init.d/uhttpd restart
4+0 records in
4+0 records out
Generating RSA private key, 2048 bit long modulus
Generating selfsigned certificate with subject ‘C=ZZ,ST=Somewhere,L=Unknown,O=OpenWrt437e957d,CN=OpenWrt,’ and validity xxxxxxxxxxxxxxxxxx)
And it is done.
We did not include the https by default for two reasons:
1. Since it is a local network – there is no easy way to create a signed certificate, resulting in google and other browsers showing that the connection is not secure. Usually people get scared of that message and scream “helppp”, so we took it off 🙂
2. Generally speaking, since it is a router – you do not really NEED the https portion, as the connection between you and the router is already encrypted via WPA2 (the wifi password). And if someone gets that password and tries to decrypt your traffic between yourself and the router – you have a much bigger issue on your hands already, and should probably change wifi passwords immediately.
Hidden Router Team