xpra icon
Bug tracker and wiki

This bug tracker and wiki are being discontinued
please use https://github.com/Xpra-org/xpra instead.

Opened 5 years ago

Closed 5 years ago

Last modified 16 months ago

#1660 closed defect (wontfix)

client also send a challenge to the server

Reported by: Antoine Martin Owned by: Antoine Martin
Priority: major Milestone: future
Component: network Version: trunk
Keywords: Cc:


This would not prevent MITM attacks on its own, but could be used to prevent a client from connecting to a malicious server.

Only slight problem is that this requires the server to have access to the password value, which is not always available to the auth module... (ie: allow and pam do not)
So if this is added, this should not be the default.

Attachments (1)

server-challenge.patch (11.2 KB) - added by Antoine Martin 5 years ago.
implement server challenge support

Download all attachments as: .zip

Change History (4)

Changed 5 years ago by Antoine Martin

Attachment: server-challenge.patch added

implement server challenge support

comment:1 Changed 5 years ago by Antoine Martin

Resolution: wontfix
Status: newclosed

The patch above is on top of r17173, it isn't too intrusive but seeing that we can't make it the default, I don't think we should apply it.

Could be useful for something like #1022

Last edited 4 years ago by Antoine Martin (previous) (diff)

comment:2 Changed 4 years ago by Antoine Martin

Better solution: #1771

comment:3 Changed 16 months ago by migration script

this ticket has been moved to: https://github.com/Xpra-org/xpra/issues/1660

Note: See TracTickets for help on using tickets.