[bind10-dev] authentication mechanism for cmdctl (fwd)
zhanglikun
zlkzhy at gmail.com
Thu Apr 1 08:51:24 UTC 2010
> > I plan to do like this:
> > 1. Digest Authentication will be used for the username/password sent to
> > cmdctl, just like you suggested.
> > 2. Remove Client-side PEM certificate (bindctl.pem), when bindctl
starts
> > up, it will ask certificate from cmdctl.
> > 3. cmdctl.spec will be used by cmdctl, cmdctl will load
certifcate/account
> > file from the path specified by cmdctl.spec.
> >
> > I will create a new branch for these feature.
>
> Just to be clear, will step 1 (username/password) be done after step 3
> so it is sent over the TLS tunnel?
Hi Jeremy,
I misunderstood http digest authentication yesterday, so I correct myself
here,
plaintext username/password will be sent over TLS tunnel. By using SSL/TLS,
the plaintext can avoid to be intercepted.
Zhanglikun
More information about the bind10-dev
mailing list