#65 certfp support.

closed
nobody
Modules (35)
5
2010-06-16
2010-01-26
Anonymous
No

certfp support would be nice

Discussion

  • Psychon
    Psychon
    2010-01-26

    There is a module for ZNC called certauth. It lets you login to znc through ssl certificates. Is this what you mean?

    If you want to login to nickserv via a certificate, you'd have to give the certificate to znc which sounds like a bad idea to me...

     
  • Klaas Tammling
    Klaas Tammling
    2010-01-30

    I would like to see a possibility to store user certs on znc and maybe enable cert authentification within znc as well. Would make things easier.

     
  • i like the idea of certfp support

     
  • Klaas Tammling
    Klaas Tammling
    2010-02-19

    I meant the login to nickserv via a certificate. Yes you are right it could be a security issue if the admin is unable to secure his environment properly.

    What about passing a client certificate through the bouncer to the services, without storing them inside the bouncer. Would something like that be possible?

     
  • Psychon
    Psychon
    2010-02-27

    You can't pass on the SSL handshake the client uses for connecting to ZNC (that's by design of SSL).

    Why do you need certfp so much? Just use the nickserv module to log in to nickserv. It's not that much less secure if you connect via SSL to the network.

     
  • Psychon
    Psychon
    2010-06-16

    • status: open --> closed
     
  • Psychon
    Psychon
    2010-06-16

    Since r2029, one can authenticate to znc via a ssl certificate. I'll take this as a reason to close this now...