Secure µTorrent WebUI

Ever wanted to have secure access to your µTorrent WebUI - here is a guide to setting up Apache to terminate an SSL connection from the wider Internet at your server, Apache then forwards your request unencrypted to your WebUI interface over localhost, then encrypting this data and sending it back.

This means that your username/password and monitoring of your downloads can't be seen by someone sniffing or logging your data.

This guide assumes that you already know how to setup multiple virtual hosts on SSL and you have your own self signed wildcard certificate and you can access the µTorrent WebUI over an unencrypted http connection, if not check out these links

• Setup µTorrent WebUI
• Self-Signed Certificates: How to get Cross Browser Compatibility with Wildcard Domains
• Apache2: Multiple Virtual Hosts over HTTPS

The next step is to get ensure you have setup µTorrent correctly. Note here that we are only allowing access from localhost (127.0.0.1) so the only way to access it will be either from the server locally, or though HTTPS and Apache. Set the alternative listening port to any unused port, 8080 or 8000 would be a common choice

Now edit your  Apache configuration file and add in the following - Changing your server name, path to certificate/key file and the port number in the proxy pass directive. Note - DON'T change the order of the two ProxyPass directives or it won't work.

   1: <VirtualHost *:443>
   2:     ServerName utorrent.example.com
   3: 
   4:     SSLCertificateFile conf/ssl/wildcard.crt
   5:     SSLCertificateKeyFile conf/ssl/wildcard.key
   6:     SSLEngine on
   7: 
   8:     ProxyPass /gui/ http://127.0.0.1:8000/gui/ 
   9:     ProxyPass / http://127.0.0.1:8000/gui/ 
  10: </VirtualHost>