[bind10-dev] authentication mechanism for cmdctl (fwd)
Jeremy C. Reed
jreed at isc.org
Wed Mar 31 13:48:35 UTC 2010
(Likun I am sending this again. This time to the list.)
On Wed, 31 Mar 2010, zhanglikun wrote:
> > What about the HTTP Digest Authentication? Will it still be password
> > protected but not tunneled over TLS?
> Yeah, now I have changed my idea, it will be tunneled over TLS
>
> I plan to do like this:
> 1. Digest Authentication will be used for the username/password sent to
> cmdctl, just like you suggested.
> 2. Remove Client-side PEM certificate (bindctl.pem), when bindctl starts
> up, it will ask certificate from cmdctl.
> 3. cmdctl.spec will be used by cmdctl, cmdctl will load certifcate/account
> file from the path specified by cmdctl.spec.
>
> I will create a new branch for these feature.
Just to be clear, will step 1 (username/password) be done after step 3
so it is sent over the TLS tunnel?
More information about the bind10-dev
mailing list