WebMon for Sequoia
WebMon configures OS X's built-in web server to support server-side includes, execCGI, PHP, SSL (including support for Letsencrypt certs) and WebDAV, for multiple domains running on the same server.
With WebDAV turned on, your web server acts like an iCloud Drive, allowing you to connect to the WebDAV folder remotely, securely, and directly from the Finder, so you can save, share, and distribute your files and folders.
WebMon also helps you set up the web server so that you can monitor its log file from a remote machine. WebMon is able to help you monitor any number of web servers from a single remote machine.
Configuring Mac OS's built-in Web Server
The following guide assumes that you're setting up a server sitting on an IP address, 10.0.1.250, and that you can refer to the server either via its domain name (say, in our case, black.monsoonbrew.com) or via the name "localhost".
When you first run WebMon on the server machine, you will see WebMon's "Configure Web Server" window, above.
You will see a single WebServer line created by default , and that is for the server, localhost. If you have a working domain name or host name for this server, you can enter that name into the Domain Name column.
The first panel in the WebMon's "Configure Web Server" window allows you to turn on PHP, Server-Side Includes, execCGI, WebDAV, , SSL, SSH (for a non-standard port, like 2222 instead of 22), and turn off Directory Listing.
Sharing Files and Folders like an iCloud Drive
You can make the WebDAV folder act like your very own iCloud Drive. This is how you can connect to it remotely, directly from the Finder. From the Finder menu, choose Go and then Connect to Server.
You will see the dialog box below. Enter the domain name or the IP address of the web server that you have just set up using WebMon (in place of 10.0.1.205). Also, note that the protocol used is http and not afp or ftp :
If your server is accessible and WebDAV is running, you will be asked to authenticate with it. Enter the WebDAV user ID and password (default "webdav" and "dav" respectively, unless you have changed it) :
If you authenticated correctly, you will see your WebDAV folder directly on your desktop and you can drag files and folders onto it. Unlike ftp, you can actually double-click on these documents, launch the application (in my case, Keynote, because I have a Keynote document), and make changes to it.
WebDAV is "better" than using ftp because you have one less port to open (it uses the web server's port 80). It is a bit faster. And it integrates with the Finder, allowing you to work with the WebDAV folder like any ordinary Finder folder.
Setting up SSL
WebMon has an interface for managing SSL certs. When SSL is turned on at the server, and the browser accesses the web server with an 's' added to the http call, like this :
https://cutedgesystems.com/software/WebMon/
all communications between the server and browser will then be encrypted.
This option can be easily turned on with the use of a test cert that WebMon can help you generate (like the Create Test Cert button).
First, make sure that the domain name that you're using to access the server is entered into the Domain Name field into the first column of the first record in the list of domains hosted by your web server (the main domain), like cutedgesystems.com, above. Then make sure to create the test cert.
Also, make sure that your server "knows" itself by that name, i.e., it is configured to access a DNS Server where a lookup on that domain name will resolve to itself. This is important because three things must line up for SSL to work properly - the ServerName parameter, as set by WebMon in the Apache config file, the certificate itself, and the machine's DNS-resolved domain name - all these must agree on the same value.
Then select the Use Test Cert option, make sure the SSL check box is turned on, and hit Start (or Restart) Web Server, and you will be able to access the web server by its domain name over SSL (https://).
Once you have an idea of how your web site might work with SSL turned on, you might want to get a real "live" cert from a Certification Authority (CA) like DigiCert.
WebMon will help you generate the Certificate Request that is needed by a CA, below. You can reach this dialog box by clicking on the Show CA Cert button.
Click the Generate button to generate a Cert Request.
Send this Cert Request (CSR) to the Cert Authority.
When the Certificate is issued and returned from a CA, you can paste the certificate (text block) back into WebMon, into the CERTIFICATE field, below.
If the certificate requires you to chain it to an INTERMEDIATE CA CERTIFICATE, WebMon has a field for that.
Make sure that you retrieve the PRIVATE KEY that the CERTIFICATE is paired with, by clicking on the Copy key button, before you click Save Cert. WebMon will take care of saving it into the right place.
WebMon will also allow you to import a pre-existing live certificate to be used with the web server. Just drag or paste the certificate and private key pair (and intermediate cert) into their corresponding fields. and click Save Cert. WebMon will then stash them into the right places in the /usr/local/cutedge/ssl/ folder for SSL to work.
So, to get the Web Server to support SSL, Close Certificate Panel, you will see that the SSL cert is available light turns green, click the SSL check-box to turn it on, and hit Start (or Restart) Web Server.
Letsencrypt
WebMon also offers a third and maybe even easier option — Letsencrypt certs created by Letsencrypt Enabler. Once you’ve created a Letsencrypt cert with your chosen WebMon-supported domain name, the Letsencrypt SSL option will be enabled. You can check that the cert exists, together with its expiry or renewal date, by clicking the Show LE Cert button.
Monitoring the Web Server, both local and remote
WebMon provides a web monitor for you to monitor the web server, both locally on the server machine, as well as from a remote machine running another copy of WebMon, so long as you have Remote Login turned on at the server machine in Sharing Preferences in System Preferences.
Panel 2 of WebMon ("Monitor Local & Remote WebServers") allows you to do that. If you are able to ssh (remote login) into your server machine from a remote machine, you should be able to use WebMon to monitor the server remotely from another machine.
However, ssh and its auto-login feature (which allows you to connect to the server from a trusted machine without having to send over a password to initiate the login connection each time) is quite hard to do by an ordinary user.
Therefore WebMon includes a facility to help you do that. You can do this in two steps.
Step 1 - Test that Remote Login works while still on the server machine
First you continue to work on the server and make sure that Remote Login (SSH) is turned on in the Sharing Preferences :
Then you add another record to WebMon's Web Server list as shown below :
We use "username@localhost" (where username is the ID of an admin-level user on your server) because we can pretend to be logging in to our server via the SSH Remote Login mechanism, even though we're still working locally on the server.
This allows us to test that Remote Login is properly configured before we move on to deal with the added complexity of connecting to our server over a network, e.g., before we have to deal with time-outs from having a slow network etc.
Now with username@localhost selected, we click on WebMon's Check Connection button. If SSH is not yet set up, WebMon will warn us and turn on its Set Up Remote Connection button :
Clicking on Set Up Remote Connection, WebMon will ask you for the administrator's password and attempt to set up the auto-login SSH connection.
If the password given is correct and authenticated, WebMon will report that the connection is now OK, and you should be able to click on the Launch Log Window button and launch a log monitor window, as shown below :
If you're able to get a list of the log records via username@localhost, it shows that your SSH Remote Login set up is working correctly.
WebMon's Log Window
WebMon allows you to monitor your web server's in-coming hits through its log window, below :
WebMon's log window allows you to set the number of records you want to retrieve from the log file at /var/log/httpd/access_log, whether you want to ignore hits from bots and crawlers, and whether you want to show only page views and ignore the hits on images.
You can filter the display further through the use of the Search Field, below.
WebMon allows you to show or hide individual columns in the table through the use of the pop-up menu at the top right hand corner of the table :
The column order can be re-arranged and re-sorted. WebMon will show you the details of each hit as you click on each row in the table, including the country from which the hit is being made, below :
If the hit has a referrer, double-clicking on the record will launch the referrer page. With a record selected, you can do a Shift-Command-C and copy its IP address to the Search Field. This will immediately filter the display to show only the hits coming from this IP address, and this is useful for tracing the path taken by one particular browser through your web site.
Other items in the Navigation menu allows you to clear the Search Field, return the search to the most recent search string, as well as scroll the display back to the currently selected record.
WebMon saves the list of recent searches across application launches, as well as the size and position of the table columns.
WebMon's File menu provides you with two ways of keeping a persistent history of the log records - one as an exported file which can be read as either a tab-delimited or comma-separated file in Excel, and another as a saved file which can be read back by WebMon.
WebMon is a document-based application, so you can open as many windows of log records as you like.
Finally, WebMon's Help menu allows you to edit the Bots and Page Views exclusion list, check for updates to WebMon, come back to this WebMon home page on the web, as well as to re-open the Configure Web Server window.
Summary
WebMon starts by working like MailServe or DNS Enabler, helping you set up a server machine, in this case the web server functions, but it goes a bit further, in the sense that it allows for remote monitoring of the server machine, and it allows you to monitor any number of servers from a single remote machine.
It does things like WebDAV and SSL that used to be difficult for an ordinary non-techie Mac user to set up, and it does it all with the one-click simplicity of the Mac. It's one more step towards making the Mac the ultimate business machine.
Release Log
18.0 September 27th 2024. WebMon for Sequoia released. The major change is that WebMon now includes its own build of Apache (version 2.4.62) and PHP (version 8.3.10). The OpenSSL version is 3.3.1.
All prices are in Singapore Dollars. The serial number & download link will be displayed in the browser after payment, and will also be sent via email.
Download
WebMon for Sequoia
Please provide the email address you used to purchase the product, together with its serial no:
The latest version is 18.0
PWebMon for Sequoia now includes its own build of Apache and PHP. for Sequoia.
This is a Universal "fat binary”, with both ARM and Intel “slices”.
Please check out the Release Log
Contact
Bernard Teo
Use Letsencrypt SSL certs. They’re free, good, first class citizens. And they’re automatically renewed using Letsencrypt Enabler.