[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #18655 [Obfuscation/meek]: Make meek-server easy to use with Let's Encrypt

Subject: Re: [tor-bugs] #18655 [Obfuscation/meek]: Make meek-server easy to use with Let's Encrypt
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Thu, 02 Jun 2016 04:31:07 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 02 Jun 2016 00:31:16 -0400
In-reply-to: <043.07cc6f3b4edbf50a1d3cc965dd2c3e66@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <043.07cc6f3b4edbf50a1d3cc965dd2c3e66@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#18655: Make meek-server easy to use with Let's Encrypt
------------------------------+---------------------
 Reporter:  dcf               |          Owner:  dcf
     Type:  enhancement       |         Status:  new
 Priority:  Medium            |      Milestone:
Component:  Obfuscation/meek  |        Version:
 Severity:  Normal            |     Resolution:
 Keywords:                    |  Actual Points:
Parent ID:                    |         Points:
 Reviewer:                    |        Sponsor:
------------------------------+---------------------

Comment (by gtank):

 Here's my branch using Russ Cox's LE client library. It's a new
 dependency, but only about 50 lines of code in meek-server itself:
 http://github.com/gtank/meek/tree/letsencrypt

 The example torrc works fine on a Debian machine and starts bridging
 without noticeable delay on first fetch. The biggest caveats I can think
 of are

 1) It manages the keys and certificates in a cache file on disk. There are
 good reasons for this (https://godoc.org/rsc.io/letsencrypt#hdr-
 Persistent_Storage) but it isn't strictly necessary.

 2) If meek-server isn't listening on 443, this starts a new listener there
 since Let's Encrypt doesn't give you another option.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/18655#comment:8>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: Re: [tor-bugs] #19218 [Applications/Tor Browser]: check.torproject.org giving false positive
Next by Author: [tor-bugs] #19219 [- Select a component]: malware Inject3.ASKH dÃtectÃ par AVG au tÃlÃchargement
Previous by thread: Re: [tor-bugs] #19218 [Applications/Tor Check]: check.torproject.org giving false positive
Next by thread: [tor-bugs] #19219 [- Select a component]: malware Inject3.ASKH dÃtectÃ par AVG au tÃlÃchargement
Index(es):
- Author
- Thread