i used this tutorial, but it doesn't work for firefox and chrome (i've tested no other browsers). Still the same error message like without installing uhttp and certificates.
I think its related to wrong dns.1 and common name (cn). How can i show the right values?
Ok. Thanks. But where i could find the cn and dns.1? I used values which has been mentioned by the tutorial. I don't know if it's really matching my routers values.
With the default settings in uhttpd and the generated self-signed cert with the normal defaults, Firefox just needs an exception to be defined the first time you connect to the router, and the warnings quiet down.
You define an exception by saying that you trust the certificate the router generated for you a few seconds ago, and you are ok to go.
If you want a public cert, you also need a public DNS name etc. (at least DDNS connectivity).
Normally the web server for LuCI is only exposed to the LAN side, not to the internet on the WAN, as pretty much all traffic from the WAN is blocked by the firewall, so there aren't that many attack vectors.
No idea why @trendy decided to discourage from installing uhttpd. It is not a large commercial http server, but on the other hand, its functionality is limited, so the exposed functional attack surface would be limited in any case.
Ps. Note that trendy was talking about exposing the webserver to internet, not about using it just in the local LAN, like most of us do.