xpra icon
Bug tracker and wiki

Opened 13 months ago

Closed 13 months ago

Last modified 9 months ago

#1660 closed defect (wontfix)

client also send a challenge to the server

Reported by: Antoine Martin Owned by: Antoine Martin
Priority: major Milestone: future
Component: network Version: trunk
Keywords: Cc:

Description

This would not prevent MITM attacks on its own, but could be used to prevent a client from connecting to a malicious server.

Only slight problem is that this requires the server to have access to the password value, which is not always available to the auth module... (ie: allow and pam do not)
So if this is added, this should not be the default.

Attachments (1)

server-challenge.patch (11.2 KB) - added by Antoine Martin 13 months ago.
implement server challenge support

Download all attachments as: .zip

Change History (3)

Changed 13 months ago by Antoine Martin

Attachment: server-challenge.patch added

implement server challenge support

comment:1 Changed 13 months ago by Antoine Martin

Resolution: wontfix
Status: newclosed

The patch above is on top of r17173, it isn't too intrusive but seeing that we can't make it the default, I don't think we should apply it.

Could be useful for something like #1022

Last edited 12 months ago by Antoine Martin (previous) (diff)

comment:2 Changed 9 months ago by Antoine Martin

Better solution: #1771

Note: See TracTickets for help on using tickets.