certfp support would be nice
There is a module for ZNC called certauth. It lets you login to znc through ssl certificates. Is this what you mean?
If you want to login to nickserv via a certificate, you'd have to give the certificate to znc which sounds like a bad idea to me...
I would like to see a possibility to store user certs on znc and maybe enable cert authentification within znc as well. Would make things easier.
i like the idea of certfp support
I meant the login to nickserv via a certificate. Yes you are right it could be a security issue if the admin is unable to secure his environment properly.
What about passing a client certificate through the bouncer to the services, without storing them inside the bouncer. Would something like that be possible?
You can't pass on the SSL handshake the client uses for connecting to ZNC (that's by design of SSL).
Why do you need certfp so much? Just use the nickserv module to log in to nickserv. It's not that much less secure if you connect via SSL to the network.
Since r2029, one can authenticate to znc via a ssl certificate. I'll take this as a reason to close this now...
Log in to post a comment.
Sign up for the SourceForge newsletter:
You seem to have CSS turned off.
Please don't fill out this field.