Changes between Version 17 and Version 18 of Encryption/SSL
- Timestamp:
- 10/12/19 12:49:05 (3 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
Encryption/SSL
v17 v18 7 7 8 8 For more details see #1252. 9 10 The TCP to SSL socket upgrade can be used with SSL clients, websockets clients (html5 clients) or HTTPS connections. 9 11 10 12 This option can more easily go through some firewalls and may be required by some network policies. Client certificates can also be used for authentication. … … 40 42 xpra attach ssl://127.0.0.1:10001/ 41 43 }}} 42 }}}43 44 45 {{{#!div class="box"46 == SSL Mode ==47 48 The TCP to SSL socket upgrade can be used with SSL clients, websockets clients (html5 clients) or HTTPS connections.49 50 Unfortunately with versions older than 2.2, not all of them at the same time. (see ticket:1213#comment:5 for details - #1504 for the fix)51 With older versions, the option {{{ssl=MODE}}} can be used to select which client protocols will be allowed on the {{{bind-tcp}}} sockets:52 ||= Mode =||||||= Client Protocol =||53 || ||= SSL =||= Websockets =||= Secure Websockets =||54 ||auto [[BR]](default)|| Yes || Yes || No ||55 ||TCP|| Yes || No || No ||56 ||www|| No || Yes || Yes ||57 44 }}} 58 45 … … 158 145 }}} 159 146 160 Starting with version 2.4 (r20175), the cadata can also be encoded using base64:147 The cadata can also be encoded using base64, which more dense: 161 148 {{{ 162 149 python -c "import sys,base64;print(base64.b64encode(open(sys.argv[1]).read()))" ca.crt