cloudstack-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Fred Wittekind <...@twister.dyndns.org>
Subject Re: [DISCUSS] Source code from realhostip.com service
Date Tue, 17 Jul 2012 14:11:12 GMT
On 7/14/2012 11:57 AM, David Nalley wrote:
> On Sat, Jul 14, 2012 at 11:49 AM, Outback Dingo <outbackdingo@gmail.com> wrote:
>> On Sat, Jul 14, 2012 at 11:27 AM, David Nalley <david@gnsa.us> wrote:
>>> Just a quick follow up - I've posted the code so it can be viewed on
>>> my personal github account. Making such a proposal without being able
>>> to see the code isn't terribly helpful, I apologize that it took me so
>>> long to do so.
>>>
>>> https://github.com/ke4qqq/RHIP
>>>
>>> --David
>> Would be nice if there was a simple howto for setting up our own
>> "realhostip" like services
>> so we dont have to rely on external services for CS to work
> That is one of the goals of pushing this code out. (and I imagine
> documentation will follow) You could of course set one up using BIND
> as Matt pointed out, but this is the actual software that is providing
> the service on realhostip.com - and I imagine that at some point we'll
> need to configure CS to perhaps use an ASF-hosted service that the
> project administers.
>
> --David
>

My personal vote would be to require users to provide there own
certificate, or disable https.  IMHO realhostip is really just an
illusion of security, since it's pretty trivial to plug the private key
into wireshark and decrypt the traffic for anyone using realhostip.

Fred



Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message