[tahoe-lafs-trac-stream] [tahoe-lafs] #2142: How to enhance WebUI default security against capability eavesdropping?
tahoe-lafs
trac at tahoe-lafs.org
Thu Dec 26 23:08:20 UTC 2013
#2142: How to enhance WebUI default security against capability eavesdropping?
-------------------------+-------------------------------------------------
Reporter: | Owner: amontero
amontero | Status: new
Type: | Milestone: undecided
enhancement | Version: 1.10.0
Priority: normal | Keywords: websec confidentiality privacy wui
Component: code- | webapi docs
frontend-web |
Resolution: |
Launchpad Bug: |
-------------------------+-------------------------------------------------
Comment (by amontero):
Replying to [comment:5 zooko]:
> So, do the docs referenced in comment:4 answer your questions, amontero?
If so, then I guess the next-step is to arrange things so that the next
user finds the necessary docs.
I was aware of the SSL enabling syntax for [node].web.port setting, it's
nicely documented as it is now. What I would like to know is if the
already present "node.pem" file can be used as a webport SSL certificate
(I didn't succeeded at it).
I think that having a cert handy in the node dir would make easier for
people to enable SSL for the webui by avoiding cert generation. Perhaps
self-signed certs aren't the most secure option, but better than no SSL,
anyways.
--
Ticket URL: <https://tahoe-lafs.org/trac/tahoe-lafs/ticket/2142#comment:7>
tahoe-lafs <https://tahoe-lafs.org>
secure decentralized storage
More information about the tahoe-lafs-trac-stream
mailing list