Complete.Org: Mailing Lists: Archives: freeciv-dev: October 2005:
[Freeciv-Dev] Re: (PR#14350) RSA based authentication

[Freeciv-Dev] Re: (PR#14350) RSA based authentication

[Top] [All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index] [Thread Index]

To:	mstefek@xxxxxxxxx
Subject:	[Freeciv-Dev] Re: (PR#14350) RSA based authentication
From:	"Jason Short" <jdorje@xxxxxxxxxxxxxxxxxxxxx>
Date:	Sun, 16 Oct 2005 09:10:42 -0700
Reply-to:	bugs@xxxxxxxxxxx

<URL: http://bugs.freeciv.org/Ticket/Display.html?id=14350 >

Mateusz Stefek wrote:
> <URL: http://bugs.freeciv.org/Ticket/Display.html?id=14350 >
> 
> This patch encrypts passwords sent to the server using RSA algorithm and
> openSSL library.
> 
> The patch misses a feature of reading a key from external file.
> Currently the key is regenerated every time the server is run.

Doesn't that mean the password will be different every time the server 
is run?  Or is the key that is generated always the same?  The latter 
would be fine as all that's needed for passwords is a simple one-way 
encryption.

Also, there shouldn't be needed any server changes for such a patch. 
All that's needed is to encrypt one text password into another text 
password at the client side.

Finally, the feature should perhaps be a compile-time option.

-jason

[Prev in Thread]

Current Thread

[Next in Thread]

[Freeciv-Dev] Re: (PR#14350) RSA based authentication, Jason Short <=
- [Freeciv-Dev] Re: (PR#14350) RSA based authentication, Mateusz Stefek, 2005/10/16
  - [Freeciv-Dev] Re: (PR#14350) RSA based authentication, Jason Short, 2005/10/16

Prev by Date: [Freeciv-Dev] Re: (PR#14340) Windows sound
Next by Date: [Freeciv-Dev] Re: improving nations wiki page but keep readme.nations in sync
Previous by thread: [Freeciv-Dev] Re: (PR#14345) Re: Players dialog usability (GTK)
Next by thread: [Freeciv-Dev] Re: (PR#14350) RSA based authentication
Index(es):
- Date
- Thread