Our uptime monitoring has started receiving a empty response from Jitsi on port 443
The response ended prematurely.
I can see NGINX passing this response through to coturn at port 5349, coturn then sends out the following message:
HTTPS connection has been disabled due Vulnerability in the Web interface !!!
Apparently this is a issue with this version of coturn.
I’m running the stock Ubuntu 18.04 version
220.127.116.11-1ubuntu2.18.04.2, has anyone else found this issue? and or any fixes?
Does Jitsi use the web interface for coturn? it’s been broken for so long I imagine not. Are these SSL settings used for anything else?
I think one potential fix would be to move SSL termination into NGINX and proxy to the unencrypted coturn port.