View Single Post
Old 11-18-2010, 04:26 PM   #5
myudkowsky
Enthusiast
myudkowsky began at the beginning.
 
Posts: 27
Karma: 10
Join Date: Nov 2010
Device: Andoid
Here's another possible clue:

Quote:
: curl --user calibre --include http://localhost:8083
Enter host password for user 'calibre':
HTTP/1.1 401 Unauthorized
Date: Thu, 18 Nov 2010 21:21:21 GMT
Content-Length: 1173
Content-Type: text/html
Www-Authenticate: Digest realm="Password to access your calibre library. Username is yudkowsky", nonce="2453dff2e88c81e16bc42c320be06d53", algorithm="MD5", qop="auth"
Server: CherryPy/3.1.2
In other words, when I start up the calibre server with "calibre-server --port 8083," I get the default auth name from my personal information and not the name "calibre." The inclusion of the correct user name strikes me as a security issue.

If I use

calibre-server --username calibre --port 8083 --password ""

then I can access the server using calibre and a blank password

If I use

calibre-server --username calibre --port 8083 --password "foo"

Then neither a blank nor "foo" work as the password.

Please let me know if I can be any further assistance.
myudkowsky is offline   Reply With Quote