Mantis Bug Tracker
Main | My View | View Issues | Change Log | Roadmap
  

View Issue Details Jump to Notes ] << ] >> ] Issue History ] Print ]
IDProjectCategoryView StatusDate SubmittedLast Update
0000003Ninan V2defaultpublic2008-08-13 05:232009-01-31 20:26
Reporterbiz 
Assigned To 
PrioritynormalSeverityfeatureReproducibilityN/A
StatusnewResolutionopen 
PlatformOSOS Version
Product Version 
Target Version2.1Fixed in Version 
Summary0000003: SSL ninan login
DescriptionBecuase Ninan is a webbased app it is capable of being used from anywhere.
This is great, the problem is that since the login screen has no encryption
on it the username and password are sent plain text. If anyone sniffs your
password they can find what you have downloaded, lock you out (if they get
the admin) or any of a number of things. If there was ssl encryption on
that page it would be greatly appreciated.
TagsNo tags attached.
Attached Files

- Relationships

-  Notes
(0000004)
biz (manager)
2008-08-26 03:40

 Instructions for doing this can be found at http://docs.codehaus.org/display/JETTY/How+to+configure+SSL [^]
(0000024)
abryzak (reporter)
2009-01-31 20:26

 Another alternative is to sit ninan behind another web server such as Apache and have it talk to ninan. That way, you can enable SSL for apache and ninan doesn't need to change.

- Issue History
Date Modified Username Field Change
2008-08-13 05:23 biz New Issue
2008-08-13 11:35 powadha Target Version => 2.0
2008-08-26 03:40 biz Note Added: 0000004
2008-09-10 00:55 biz Target Version 2.0 => 2.1
2009-01-31 20:26 abryzak Note Added: 0000024

Copyright © 2000 - 2010 MantisBT Group
Powered by Mantis Bugtracker