Not able to configure gunicorn after upgrade to 0.2.1
I have tried the steps in: https://burp-ui.readthedocs.io/en/latest/gunicorn.html
sustem: ubuntu 14.04
with burp-ui==0.1.3
# /usr/bin/gunicorn -k gevent -w 4 'burpui:init(conf="/etc/burp/burp-ui.cfg", debug="true")'
2016-07-14 11:38:19 [17894] [INFO] Starting gunicorn 17.5
2016-07-14 11:38:19 [17894] [INFO] Listening at: http://127.0.0.1:8000 (17894)
2016-07-14 11:38:19 [17894] [INFO] Using worker: gevent
2016-07-14 11:38:19 [17902] [INFO] Booting worker with pid: 17902
2016-07-14 11:38:19 [17903] [INFO] Booting worker with pid: 17903
2016-07-14 11:38:19 [17914] [INFO] Booting worker with pid: 17914
2016-07-14 11:38:19 [17918] [INFO] Booting worker with pid: 17918
Works perfect.
But if I upgrade to latest:
pip install --upgrade burp-ui
Successfully installed burp-ui-0.2.1
loads fine here:
/usr/bin/gunicorn -k gevent -w 4 'burpui:init(conf="/etc/burp/burp-ui.cfg", debug="true")'
2016-07-14 11:40:24 [18827] [INFO] Starting gunicorn 17.5
2016-07-14 11:40:24 [18827] [INFO] Listening at: http://127.0.0.1:8000 (18827)
2016-07-14 11:40:24 [18827] [INFO] Using worker: gevent
2016-07-14 11:40:24 [18832] [INFO] Booting worker with pid: 18832
2016-07-14 11:40:24 [18833] [INFO] Booting worker with pid: 18833
2016-07-14 11:40:24 [18834] [INFO] Booting worker with pid: 18834
2016-07-14 11:40:24 [18836] [INFO] Booting worker with pid: 18836
But page says: "Internal server error"
and in console I got only:
2016-07-14 11:40:54 [18827] [CRITICAL] WORKER TIMEOUT (pid:18833)
2016-07-14 11:40:54 [18827] [CRITICAL] WORKER TIMEOUT (pid:18834)
2016-07-14 11:40:54 [18827] [CRITICAL] WORKER TIMEOUT (pid:18836)
2016-07-14 11:40:54 [18827] [CRITICAL] WORKER TIMEOUT (pid:18836)
2016-07-14 11:40:54 [19064] [INFO] Booting worker with pid: 19064
2016-07-14 11:40:54 [19065] [INFO] Booting worker with pid: 19065
2016-07-14 11:40:54 [19066] [INFO] Booting worker with pid: 19066
2016-07-14 11:41:24 [18827] [CRITICAL] WORKER TIMEOUT (pid:19064)
2016-07-14 11:41:24 [18827] [CRITICAL] WORKER TIMEOUT (pid:19066)
2016-07-14 11:41:24 [18827] [CRITICAL] WORKER TIMEOUT (pid:19065)
2016-07-14 11:41:24 [18827] [CRITICAL] WORKER TIMEOUT (pid:19064)
2016-07-14 11:41:24 [18827] [CRITICAL] WORKER TIMEOUT (pid:19066)
2016-07-14 11:41:24 [18827] [CRITICAL] WORKER TIMEOUT (pid:19065)
burp-ui.cfg:
[Global]
# On which port is the application listening
port: 5000
# On which address is the application listening
# '::' is the default for all IPv6
# set it to '0.0.0.0' if you want to listen on all IPv4 addresses
bind: 127.0.0.1
# enable SSL
ssl: false
# ssl cert
sslcert: /etc/burp/ssl_cert-server.pem
# ssl key
sslkey: /etc/burp/ssl_cert-server.key
# burp server version 1 or 2
version: 2
# Handle multiple bui-servers or not
# If set to 'false', you will need to declare at least one 'Agent' section (see
# bellow)
standalone: true
# authentication plugin (mandatory)
# list the misc/auth directory to see the available backends
# to disable authentication you can set "auth: none"
# you can also chain multiple backends. Example: "auth: ldap,basic"
# the order will be respected unless you manually set a higher backend priority
auth: basic
# acl plugin
# list misc/acl directory to see the available backends
# default is no ACL
acl: basic
# You can change the prefix if you are behind a reverse-proxy under a custom
# root path. For example: /burpui
# You can also configure your reverse-proxy to announce the prefix through the
# 'X-Script-Name' header. In this case, the bellow prefix will be ignored in
# favour of the one announced by your reverse-proxy
prefix: none
[UI]
# refresh interval of the pages in seconds
refresh: 180
# refresh interval of the live-monitoring page in seconds
liverefresh: 5
[Production]
# storage backend (only used with gunicorn) for session and cache
# may be either 'default' or 'redis'
storage: default
# redis server to connect to
redis: localhost:6379
[Security]
## This section contains some security options. Make sure you understand the
## security implications before changing these.
# list of 'root' paths allowed when sourcing files in the configuration.
# Set this to 'none' if you don't want any restrictions, keeping in mind this
# can lead to accessing sensible files. Defaults to '/etc/burp'.
# Note: you can have several paths separated by comas.
# Example: /etc/burp,/etc/burp.d
includes: /etc/burp
# enable certificates revocation
revoke: false
# remember_cookie duration in days
cookietime: 14
# whether to use a secure cookie for https or not. If set to false, cookies
# won't have the 'secure' flag.
# This setting is only useful when HTTPS is detected
scookie: false
# application secret to secure cookies. If you don't set anything, the default
# value is 'random' which will generate a new secret after every restart of your
# application. You can also set it to 'none' although this is not recommended.
# /!\ YOU CANNOT USE THE MAGIC 'random' VALUE WHEN USING GUNICORN /!\
appsecret: random
[Experimental]
## This section contains some experimental features that have not been deeply
## tested yet
# enable zip64 feature. Python doc says:
# « ZIP64 extensions are disabled by default because the default zip and unzip
# commands on Unix (the InfoZIP utilities) don\u2019t support these extensions. »
zip64: false
# burp2 backend specific options
[Burp2]
# burp binary
burpbin: /usr/sbin/burp
# vss_strip binary
stripbin: /usr/sbin/vss_strip
# burp client configuration file used for the restoration (Default: None)
bconfcli: /etc/burp/burp-monitor.conf
# burp server configuration file used for the setting page
bconfsrv: /etc/burp/burp-ui.conf
# temporary directory to use for restoration
tmpdir: /storage/burp-ui
# how many time to wait for the monitor to answer (in seconds)
timeout: 5
## basicauth specific options
## Note: in case you leave this section commented, the default login/password
## is admin/admin
[BASIC]
## Backend priority. Higher is first
#priority: 2
admin: somthingelse here
burp-monitor.conf
mode = client
server = 127.0.0.1
status_port = 6064
protocol = 2
port = 6063
user = root
group = root
pidfile = /var/run/burp-monitor.pid
protocol = 1
cname = monitor
password = someotherpass
syslog = 1
stdout = 1
ca_burp_ca = /usr/sbin/burp_ca
ca_csr_dir = /etc/burp/CA_monitor
ssl_cert_ca = /etc/burp/ssl_cert_ca-monitor.pem
ssl_cert = /etc/burp/ssl_cert-monitor.pem
ssl_key = /etc/burp/ssl_cert-monitor.key
ssl_key_password = password
ssl_peer_cn = somethingelse
The monitor works, as also works with burp-ui 0.1.3