Comment #12 on issue 690 by volkov.rodion: password sent in plain text during user auth http://code.google.com/p/openmeetings/issues/detail?id=690
No, actually you are slightly wrong at what you are trying to do. In order to implement SSL authentication and further work with SSL you have to have the following lines in your OpenMeetings' config.xml file: <rtmpsslport>8443</rtmpsslport> <!-- Wether it should try to connect to rtmps first or not Valid values: yes / no NOTE: The OSx and Linux Flash Player are NOT able to connect via rtmps The support for Windows is experimental --> <useSSL>yes</useSSL> As well as your Red5/conf/red5.properties should contain the following section: # RTMPS rtmps.host=0.0.0.0 rtmps.port=8443 rtmps.ping_interval=5000 rtmps.max_inactivity=60000 rtmps.max_keep_alive_requests=-1 rtmps.max_threads=20 rtmps.acceptor_thread_count=2 rtmps.processor_cache=20 # RTMPS Keystore Password rtmps.keystorepass=password And SSL will be used any time you connect to your openmeetings with your typical URL, say http://localhost:5080/openmeetings. No need to change the port or something. But, this all will work only with Windows, flash on Linux doesn't support rtmps yet. But, this all is valid for client-to-server transactions. As for LDAP, after the password is sent to server, it will try to authenticate with LDAP server and password will be sent in plain text between those two servers, to avoid that you should use the patch attached above, it should implement MD5 encrypted authentication. Unfortunately, at the moment it works with Windows AD servers only if passwords are stored in reversible encryption, which by itself is a security flaw. -- You received this message because you are listed in the owner or CC fields of this issue, or because you starred this issue. You may adjust your issue notification preferences at: http://code.google.com/hosting/settings --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "OpenMeetings developers" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/openmeetings-dev?hl=en -~----------~----~----~----~------~----~------~--~---
