[Interest] wss:// on localhost
Alexander Carôt
alexander_carot at gmx.net
Tue Jul 21 10:33:45 CEST 2020
>> How do I generate the required CRT and KEY - File for localhost which shall work on every other client's localhost.
Or asked in a different way: The qwebsocketserver - example:
https://code.qt.io/cgit/qt/qtwebsockets.git/tree/examples/websockets/sslechoserver?h=5.15
already has the CERT- and KEY files included. Should it be possible to run this example server on my localhost and any other machine's localhost without the need to generate new certificates ?
--
http://www.carot.de
Email : Alexander at Carot.de
Tel.: +49 (0)177 5719797
> Gesendet: Dienstag, 21. Juli 2020 um 10:07 Uhr
> Von: "Alexander Carôt" <alexander_carot at gmx.net>
> An: "Thiago Macieira" <thiago.macieira at intel.com>
> Cc: interest at qt-project.org
> Betreff: Re: [Interest] wss:// on localhost
>
> > I don't see how that affects anything. Are you saying you can't update the
> > application? If you can't update the application, how are you going to apply
> > the fixes we're discussing here?
>
>
> Misunderstanding :-) Of course I apply application updates in more or less regular intervals of several weeks.
>
>
> > If you meant that they aren't able to generate the certificate, let me clarify
> > that I meant the application should do that automatically.
>
>
> That was the misunderstanding - I thought you wanted each user to generate it manually.
>
>
> > There needs to be
> > no user interaction. The certificate is just something that the WebSocket
> > client and server agree upon before start, like the port number. I mentioned
> > "every few months" just so you don't incur the penalty of the generation on
> > every start.
>
>
> So far I assumed that it is impossible to generate a localhost certificate which runs on any other machine's localhost as well and it brings me to the next question:
>
>
> How do I generate the required CRT and KEY - File for localhost which shall work on every other client's localhost.
>
> Sorry if the solution might be trivial - I am simply completely unexperienced in terms of securiry :-)
>
> Thanks a lot again in advance
>
> Alex
>
>
> --
> http://www.carot.de
> Email : Alexander at Carot.de
> Tel.: +49 (0)177 5719797
>
>
> > Gesendet: Montag, 20. Juli 2020 um 16:40 Uhr
> > Von: "Thiago Macieira" <thiago.macieira at intel.com>
> > An: interest at qt-project.org
> > Betreff: Re: [Interest] wss:// on localhost
> >
> > On Monday, 20 July 2020 01:57:31 PDT Alexander Carôt wrote:
> > > The problem is that my application currently has a daily pageview of > 1000
> > > and a user base of more than 10.000 - most of the user are non-tech-sage so
> > > I need the most simply solution.
> >
> > I don't see how that affects anything. Are you saying you can't update the
> > application? If you can't update the application, how are you going to apply
> > the fixes we're discussing here?
> >
> > If you meant that they aren't able to generate the certificate, let me clarify
> > that I meant the application should do that automatically. There needs to be
> > no user interaction. The certificate is just something that the WebSocket
> > client and server agree upon before start, like the port number. I mentioned
> > "every few months" just so you don't incur the penalty of the generation on
> > every start.
> >
> > --
> > Thiago Macieira - thiago.macieira (AT) intel.com
> > Software Architect - Intel System Software Products
> >
> >
> >
> > _______________________________________________
> > Interest mailing list
> > Interest at qt-project.org
> > https://lists.qt-project.org/listinfo/interest
> >
> _______________________________________________
> Interest mailing list
> Interest at qt-project.org
> https://lists.qt-project.org/listinfo/interest
>
More information about the Interest
mailing list