Another WebDAV tutorial

Re: Use of secured wd2go webdav (Firmware 2.0 +)

Fri, 15 Nov 2013 17:12:31 +0000

Hi @bourgeoa
Could you please explain it a little bit more detailed? For example, I don't get the part with 'newuser'
Does nano mean that it has to be edit it with nano? What exactly is htdigest?

Thanks!

Re: Use of secured wd2go webdav (Firmware 2.0 +)

Sat, 24 Aug 2013 00:26:13 +0000

Hi Dav-M,

I did use bourgeoa's updated method (see link below, pretty similar to the original one I think) but cannot access my shares remotely with http or https : ///AnyOfYourShare… In fact, when using https, I get a security warning that tells me I am redirected to a server named something like *.123456device.wd2go.com. That is before getting asked for user/password.

Since it seems it worked for you and you are still around, any idea what to do to fix this ? Have you experienced the same or do other prerequisite mods I should do first ?

Thanks a lot,

Bruno

bourgeoa's updated method : mybookworld%dot%wikidot%dot%com%slash%forum%slash%t-593394%slash%streaming-ms-office-files-over-remote-mybooklive#post-1627270

Re: Use of secured wd2go webdav (Firmware 2.0 +)

Mon, 11 Mar 2013 16:34:08 +0000

Do you have an Idea to get the access to Public using ///Public without user/pass request ?

( I would need this to PXE Boot using HTTP instead of TFTP…HTTP worked in the past but with the new firmware it was dissabled)

Re: Use of secured wd2go webdav (Firmware 2.0 +)

Thu, 29 Nov 2012 14:58:42 +0000

Thks, works perfectly as expected !

Re: Use of secured wd2go webdav (Firmware 2.0 +)

Sun, 25 Nov 2012 20:39:23 +0000

I propose the simplest way and secure in my opinion adding a new user/pass in wd2go user list.
wd2go uses Webdav but even if we can know the users, we don't have the user's pass they have selected.
So you have to create at least one new user/pass :

# nano /etc/nas/apache2/auth/htgroup (to add a user : 'newuser', on the admin line (administrator of MyBookLive in UI)) # htdigest /etc/nas/apache2/auth/htpasswd 'DeviceUser' newuser (Don't modify the word DeviceUser)

Your Webdav's accesses are : http or https:///AnyOfYourShare (usually 'Public' or any share you created)
Your user/pass will be asked.

Re: Another WebDAV tutorial

Thu, 12 Apr 2012 22:09:09 +0000

Another option is to install the BarracudaDrive WebDAV and Web File Manager.

Re: Another WebDAV tutorial

Wed, 08 Feb 2012 16:05:45 +0000

If you don't want to only access your new "webdav" share, you can access all of your shares by changing these lines in wdnas and 000-wdnas

Change: DocumentRoot /shares/webdav
To: DocumentRoot /shares

Change: Alias /webdav /shares/webdav
To: Alias /webdav /shares

And now you should have access to all of your shares

Re: Another WebDAV tutorial

Wed, 08 Feb 2012 15:55:55 +0000

I couldn't get either of these to work but I got it to work without using ssl:

Create in UI share folder "webdav"

MyBookLive: ~ # a2enmod autoindex
MyBookLive: ~ # /etc/init.d/apache2 restart

Create file "wdnas5080" in /etc/apache2/sites-availible with

ServerAdmin webmaster@localhost

DocumentRoot /shares/webdav

Options FollowSymLinks
AllowOverride None

Comment this line if remote WebUI access is needed (WAN access)

Include /tmp/allow.conf
ErrorLog /var/log/apache2/error.log

Possible values include: debug, info, notice, warn, error, crit,
Alert, emerg.

LogLevel warn

Alias /webdav /shares/webdav

Dav On
Options Indexes
Order Deny,Allow
Deny from all
Allow from all
AuthName DeviceUser
AuthType Digest
AuthDigestDomain /webdav
AuthDigestProvider file
AuthUserFile /etc/nas/apache2/auth/htpasswd
AuthGroupFile /etc/nas/apache2/auth/htgroup
Require valid-user

Create the same file but name it "000-wdnas5080" in /etc/apache2/sites-enabled

Add Litsten 0.0.0.0:5080 to ports.conf

MyBookLive :/ etc/apache2 # a2ensite wdnas5080
MyBookLive :/ etc/apache2 # /etc/init.d/apache2 reload

This worked for me. Make sure you enable port forwarding on your router and forward port 5080 to the IP address of your My Book Live.

After all this is done, you can access your drive at:

On your local network:
IPaddressOFMyBookLive:5080/webdav/

On the Internet:
ExternalIPaddress:5080/webdav/

Re: Another WebDAV tutorial

Tue, 10 Jan 2012 20:17:40 +0000

some notes for this tutorial with newer firmware MyBookLive 02.10.09-124 : Core F/W

in this firmware WD uses an own webdav with ssl etc.
you don't need activate this ;-)
use /etc/apache2/sites-available/wdnas-ssl

some changes required:

(1) # nano /etc/apache2/sites-available/wdnas-ssl

 #our webdav stuff DocumentRoot /var/www/webdav/  Options Indexes MultiViews AllowOverride None Order allow,deny allow from all  Alias /webdav /var/www/webdav  DAV On AuthType Basic AuthName "WebDAV-Realm" AuthUserFile /etc/apache2/passwd.dav Require valid-user  #end of webdav stuff

save file

(2) Create new passwd file called passwd.dav with username webdav:
# htpasswd -c /etc/apache2/passwd.dav webdav
(note that this is quite basic password authentication. More secure methods exist but I don't have experience in using them).

(3) needed to have the Basic Authentication module enabled in the LoadModules section of the httpd.conf
# nano /etc/apache2/httpd.conf

LoadModule auth_basic_module /usr/lib/apache2/modules/mod_auth_basic.so

this prevents the error in /var/log/apache2/error.log
."[crit] [client 192.168.1.29] configuration error: couldn't check user. No user file?: /webdav/"

(4) Test your new config with this command:
# apache2ctl configtest

(5) If there are no errors then continue and restart apache2 (otherwise check your edits to wdnas-ssl):
# /etc/init.d/apache2 reload

Another WebDAV tutorial

Sun, 27 Mar 2011 17:33:58 +0000

Setting up webdav on mybooklive is fairly easy because apache2 supports it natively and there is nothing you have to install. I use webdav across SSL so that my Apple iPad can access presentations from keynote directly from MBL versus a 3rd party service. You can mount the folder as a web drive as well and access externally. When finished, you will be able to access your files at:

https:///webdav
You will logon using username/password: webdav / webdav
Your files are stored in /var/www/webdav (or your samba share "public folder" etc)

Here are the steps:

Enable webdav and ssl and restart apache2
# a2enmod dav_fs
# a2enmod ssl
# /etc/init.d/apache2 restart

Backup the default-ssl before we edit it:
# cd /etc/apache2/sites-available
# cp default-ssl default-ssl.orig

Edit default-ssl:
# nano default-ssl
(just below ServerAdmin webmaster@localhost)

 #our webdav stuff DocumentRoot /var/www/webdav/  Options Indexes MultiViews AllowOverride None Order allow,deny allow from all  Alias /webdav /var/www/webdav  DAV On AuthType Basic AuthName "WebDAV-Realm" AuthUserFile /etc/apache2/passwd.dav Require valid-user  #end of webdav stuff

(save your edited file)

Create new passwd file called passwd.dav with username webdav:
# htpasswd -c /etc/apache2/passwd.dav webdav
(note that this is quite basic password authentication. More secure methods exist but I don't have experience in using them).

Enable our new web site:
# a2ensite default-ssl

Test your new config with this command:
# apache2ctl configtest

If there are no errors then continue and restart apache2 (otherwise check your edits to default-ssl:
# /etc/init.d/apache2 reload

To prevent directory browsing of https://>
# touch /var/www/index.html

You are done!

Now test that it works. Either from your browser or application. Or you can do this directly from your MBL using “cadaver” which will also give decent error information if its not working as expected.

Install cadever
# apt-get install cadaver

Then run:
# cadaver https://192.168.1.11/webdav
Follow prompts…
Username: webdav
Password: webdav

Then when you get here, type ls to list everything inside /var/www/webdav
dav:/webdav/> ls

To complete this tutorial, I prefer my files are stored in a separate folder that I can access also from my PC as a share. (i.e. samba)

# cd /var/www
(remove dir webdav if you created it)
# rmdir webdav
# mkdir /nfs/Public/webdav
# ln –s /nfs/Public/webdav .
Set permissions so that any file created by WebDav can also be read by a PC through samba:

# echo “umask 002" » /etc/apache2/envars
(will make apache2 write 664 as www-data, most important is that group must be read-write)

set gid so that all files created by webdav or your PC will be with the same group “share”:
# chgrp w+s /nfs/Public/webdav

END