Attention : support for WAPT 1.8.2 ended on June the 30th 2022.

There are known vulnerabilities in WAPT dependencies in WAPT 1.8.2 branch. Please upgrade to the latest supported version. CVE listing (non exhaustive) :
  • * python engine : python 2.7 (CVE-2020-10735, CVE-2015-20107, CVE-2022-0391, CVE-2021-23336, CVE-2021-3177, CVE-2020-27619, CVE-2020-26116, CVE-2019-20907, CVE-2020-8492, etc.)
  • * cryptography : openssl : CVE-2022-2068, CVE-2022-1292, CVE-2022-0778, CVE-2021-4160, CVE-2021-3712, CVE-2021-23841, CVE-2021-23840, CVE-2021-23839, CVE-2020-1971, CVE-2020-1968, CVE-2019-1551
  • * python dependencies : cryptography (CVE-2020-36242, CVE-2020-25659), eventlet (CVE-2021-21419), jinja2 (CVE-2020-28493), psutil (CVE-2019-18874), waitress (CVE-2022-31015), lxml (CVE-2021-4381, CVE-2021-28957, CVE-2020-27783, CVE-2018-19787), ujson (CVE-2022-31117, CVE-2022-31116, CVE-2021-45958), python-ldap (CVE-2021-46823)

Changing the listening port of the WAPT Server

Note

In some cases, it is not possible to install the WAPT Server on a Windows machine because a service already occupies ports 80 and 443.

It is the case if for example, a IIS web service is active on the host (example: anti-virus server, WSUS, web server …).

In that case, we will change the listening port on the Nginx web server integrated to the WAPT Server.

Installing the WAPT Server

  • The installation of WAPT still needs ports 80 and 443 be available when installing the WAPT Server, so the first step consists of stopping the service that listens on ports 80 and/ or 443 (IIS/ Anti-virus).

  • launch now the installation of the WAPT Server and follow the post-configuration procedure, but do not launch the WAPT console. If you need guidance, you may follow the documentation to install the WAPT Server on Windows.

  • now stop the Nginx service and the WAPT service:

    net stop WAPTNginx
net stop waptservice

  • finally, restart the service that listens on ports 80 and/ or 443 (IIS/ Anti-virus / Web server …);

Configuring the new listening ports in the Nginx

  • open the file C:\Program Files (x86)\wapt\waptserver\nginx\conf\nginx.conf

  • replace the lines:

    listen       80;
listen       443 ssl;

    with:

    listen       8000;
listen       8443 ssl;

  • restart Nginx with net start WAPTNginx;

  • open C:\Program Files (x86)\wapt\wapt-get.ini;

  • add the port to the specified URL, example:

    repo_url=https://wapt.mydomain.lan:8443/wapt
wapt_server=https://wapt.mydomain.lan:8443

  • restart the WAPT service with net start waptservice;

Making changes to firewall rules on the Windows devices

You must now make changes to the two waptserver rules that were created during initial installation: waptserver waptserver 80 and waptserver 443.

  • change the listening ports:

Changing from port 80 to 8000

Changing from port 80 to 8000

Changing from port 443 to 8443

Changing from port 443 to 8443

Go on to the next step to launch the WAPT console.

Hint

If you had already launched the WAPT console, do not forget to change the port values in the WAPT console configuration file by clicking the Wrench on the console login screen.