Disable RC4 for SSL

---

Hi guys,

[EDIT]: I’m currently using pimatic v8 because I hadnt time to fully reinstall a new flash card yet. Maybe thats the the solution for my issue?

I just created a certificate for my pimatic frontend and it seems to work for now (letsencrypt)
My Desktop Browsers (Mac / Win) say the certificate is valid.
If I open the frontend with my Chrome Browser on Android it says its not secure because of enabled rc4 cipher suite.
Is there a way to disable rc4 in pimatics webserver config?

Thanks in advance.

Partovic

Here a screenshot of what the mobile browser says

@Partovic I think there is no way to disable this setting. I would recommend you to run a reverse proxy for publishing pimatic to the internet on https. It`s much safer.

Did you cleared your cache on your desktop browser? Normally chrome reports this issue on all devices.

@thost96 Ok. Thanks. For now I have absolutely no idea how to install/configure nginx. I have to look for a tutorial.
Its definitly not a cache issue in my desktop browsers. tried from different machines. chrome is up to date on all devices. Issue only occures on my Android Chrome

@Partovic I have published a working nginx reverse proxy config for pimatic.
Here is the link: https://forum.pimatic.org/topic/1199/pimatic-through-reverse-proxy/5

Installation is simple sudo apt install nginx

@thost96 Thanks. I think I will flash a new SD card this weekend with Reverse Proxy and Pimatic v9. Tried to avoid it as long as possible because of my LIRC configuration ^^ I ordered some Amazon Dash Buttons today. One more reason to upgrade.

And in case anyone has already an Apache config (and is familiar with that) and wants to migrate to nginx (and is not familiar with that), see this article: https://www.digitalocean.com/community/tutorials/how-to-migrate-from-an-apache-web-server-to-nginx-on-an-ubuntu-vps