Certificates showed on home page before login

Home Page Forums Network Management ZeroShell Certificates showed on home page before login

This topic contains 1 reply, has 0 voices, and was last updated by  kawarmc 9 years, 6 months ago.

Viewing 3 posts - 1 through 3 (of 3 total)
  • Author
    Posts
  • #41835

    kawarmc
    Member

    I find very usefull to have the CA cerfiticate on the login page, even before login in to the appliace, but I don’t see the benefits of having the users certs’ there too.

    With the certificates shown on that page, any user is able to download and use them.

    What’s the point of using certificates to authenticate people if we give those thertificates to everyone?

    Wouldn’t it be better to put those links on the private are of the management page after the user has sucsessfully logged in?

    Thanks for the great job Fulvio.

    #48554

    imported_fulvio
    Participant

    Take in mind that the certificates are public data because just contain the public key signed by the Certification Authority. What you have to protect is the private keys. To obtain the private key, a user needs to login in the web interface of zeroshell with his/her password.

    Regards
    Fulvio

    #48555

    kawarmc
    Member

    Last night I configured a connection from home to one of my zs routers and I thought I used the certificates in pkcs12 format from the login page to configure the OpenVPN client on my linux workstation box. But I was wrong. The one I used by mistake was the one I have downloaded previously from inside the private area.

    That’s what made me think there was an error with the certificates on the loggin page. I always use pkcs12 format because i don’t have to deal with 3 files, but, obviously, the one exported from the login page does not have the private key included, which is the right.

    Thank you for you help, and, again, you`re doing a wonderful job with zeroshell, Fulvio.

Viewing 3 posts - 1 through 3 (of 3 total)

You must be logged in to reply to this topic.