How config HTTPS ports? Beef config payload urls which doesn't work. #3091
Description
I use latest beef version 0.5.4.0 in docker, made with Dockerfile. Why hook_session doesn't work on 443 port by https. I have ssl cert and don't understand how it's work. I'm trying different options.
Case 1:
config.yaml
http:
debug: true #Thin::Logging.debug, very verbose. Prints also full exception stack trace.
host: "0.0.0.0"
port: "3000"
public:
host: "my-domain.com" # public hostname/IP address
port: "443" # public port (443 if the public server is using HTTPS)
https: true # true/false
https:
enable: true
# In production environments, be sure to use a valid certificate signed for the value
# used in beef.http.public (the domain name of the server where you run BeEF)
key: "privkey.txt"
cert: "my-domain.crt"
payload : https://my-domain.com:3000/hook.js
Beef config payload by pass "my-domain.com:443/hook.js" but it's not correct and doesn't work. If I make payloads "my-domain.com:3000/hook.js" then Firefox download hook.js but doesn't establishment session.
Case 2:
config.yaml
http:
debug: true #Thin::Logging.debug, very verbose. Prints also full exception stack trace.
host: "0.0.0.0"
port: "443"
public:
host: "my-domain.com" # public hostname/IP address
port: "443" # public port (443 if the public server is using HTTPS)
https: true # true/false
https:
enable: true
# In production environments, be sure to use a valid certificate signed for the value
# used in beef.http.public (the domain name of the server where you run BeEF)
key: "privkey.txt"
cert: "my-domain.crt"
payload : https://my-domain.com:443/hook.js
If beef.http.port == 443 -> beef doesn't work, doesn't matter which port in beef.http.public,port. Always the same errors.
Case 3:
config.yaml
http:
debug: true #Thin::Logging.debug, very verbose. Prints also full exception stack trace.
host: "0.0.0.0"
port: "3000"
public:
host: "my-domain.com" # public hostname/IP address
port: "3000" # public port (443 if the public server is using HTTPS)
https: true # true/false
https:
enable: true
# In production environments, be sure to use a valid certificate signed for the value
# used in beef.http.public (the domain name of the server where you run BeEF)
key: "privkey.txt"
cert: "my-domain.crt"
payload : https://my-domain.com:443/hook.js
Firefox download hook.js and establishment session but it's doesn't what I would like.
And one more thing, when I added domain name, "admin_ui" doesn't work by pass "my-domain.com:3000/ui/panel". I see "Internal server error" in my browser.